An issue was discovered in PHPMailer before 5.2.22. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.
Information Disclosure
Phpmailer
NVD
GitHub
Exploit-DB
VulDB
CVSS 3.0
5.5
EPSS
2.9%
Cross-site request forgery (CSRF) vulnerability in CMS Made Simple before 2.1.6 allows remote attackers to hijack the authentication of administrators for requests that create accounts via an. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
CSRF
PHP
Cms Made Simple
NVD
VulDB
CVSS 3.0
8.0
EPSS
0.5%