Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Simplephpscripts — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting Simplephpscripts. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SimplePHPscripts develops lightweight PHP web applications for small businesses and personal websites, focusing on content management and e-commerce solutions. Historically, the software has been vulnerable to multiple remote code execution flaws, cross-site scripting (XSS), and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure authentication mechanisms. With 14 CVEs recorded, these issues have allowed attackers to execute arbitrary code, steal session cookies, and gain unauthorized administrative access. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests a need for improved security practices in development and regular patching for deployed instances.

Top products by Simplephpscripts: Simple CMS Classified Ads Script GuestBook Script Event Script Simple Blog Funeral Script PHP FAQ Script PHP NewsLetter Script PHP Simple Forum PHP Photo Gallery PHP News Script PHP Pro
CVE IDTitleCVSSSeverityPublished
CVE-2021-47919 Simple CMS 2.1 Non-Persistent Cross-Site Scripting via Preview Parameter — Simple CMSCWE-79 6.4 Medium2026-02-01
CVE-2021-47917 Simple CMS 2.1 Persistent Cross-Site Scripting via User Input Parameters — Simple CMSCWE-79 6.4 Medium2026-02-01
CVE-2021-47918 Simple CMS 2.1 SQL Injection Vulnerability via Users Module — Simple CMSCWE-89 8.1 High2026-02-01
CVE-2023-3540 SimplePHPscripts NewsLetter Script PHP URL Parameter preview.php cross site scripting — NewsLetter Script PHPCWE-79 3.5 Low2023-07-07
CVE-2023-3539 SimplePHPscripts Simple Forum PHP URL Parameter preview.php cross site scripting — Simple Forum PHPCWE-79 3.5 Low2023-07-07
CVE-2023-3538 SimplePHPscripts Photo Gallery PHP URL Parameter preview.php cross site scripting — Photo Gallery PHPCWE-79 3.5 Low2023-07-07
CVE-2023-3537 SimplePHPscripts News Script PHP Pro URL Parameter preview.php cross site scripting — News Script PHP ProCWE-79 3.5 Low2023-07-07
CVE-2023-3536 SimplePHPscripts Funeral Script PHP URL Parameter preview.php cross site scripting — Funeral Script PHPCWE-79 3.5 Low2023-07-07
CVE-2023-3535 SimplePHPscripts FAQ Script PHP URL Parameter preview.php cross site scripting — FAQ Script PHPCWE-79 3.5 Low2023-07-07
CVE-2023-3476 SimplePHPscripts GuestBook Script URL Parameter preview.php cross site scripting — GuestBook ScriptCWE-79 3.5 Low2023-06-30
CVE-2023-3475 SimplePHPscripts Event Script URL Parameter preview.php cross site scripting — Event ScriptCWE-79 3.5 Low2023-06-30
CVE-2023-3474 SimplePHPscripts Simple Blog URL Parameter preview.php cross site scripting — Simple BlogCWE-79 3.5 Low2023-06-30
CVE-2023-3465 SimplePHPscripts Classified Ads Script HTTP POST Request user.php cross site scripting — Classified Ads ScriptCWE-79 3.5 Low2023-06-29
CVE-2023-3464 SimplePHPscripts Classified Ads Script URL Parameter preview.php cross site scripting — Classified Ads ScriptCWE-79 3.5 Low2023-06-29

This page lists every published CVE security advisory associated with Simplephpscripts. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.