CNNVD-202602-024 Information

CNNVD ID

CNNVD-202602-024

Related CVE

CVE-2021-47918

• CNNVD Published: 2026-02-01

Description (Chinese)

Simple CMS是Simple PHP Scripts开源的一个内容管理系统。 Simple CMS 2.1版本存在SQL注入漏洞，该漏洞源于admin.php文件中未验证的输入参数，可能导致SQL注入攻击。

Description (English)

Simple CMS is an open-source content management system for Simple PHP Scripts. Version 2.1 of the Simple CMS contains an injection loophole of SQL, which originates from input parameters not verified in the admin.php file and may lead to an injection attack of SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

Simple PHP Scripts

Published

2026-02-01

Last Modified

2026-02-24

References

https://simplephpscripts.com/simple-cms-php https://www.vulncheck.com/advisories/simple-cms-sql-injection-vulnerability-via-users-module2 https://www.vulnerability-lab.com/get_content.php?id=2303