Primary

Context

CMSimple Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in CMSimple version 5.15. This vulnerability allows authenticated attackers to modify file extension settings and upload malicious PHP files. By appending ',php' to the Extensions_userfiles field, attackers can upload a shell script to the media directory, which is then executed on the server.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server where CMSimple 5.15 is installed.

Reproduction

To reproduce this vulnerability, log into CMSimple 5.15 and navigate to the Settings > CMS section. Append ',php' to the Extensions_userfiles field and save the changes. Then, go to the Files > Media section and upload a PHP file, such as a shell script. Once uploaded, the shell can be accessed via the media directory.

Added: Dec 10, 2025, 10:35 PM

Updated: Dec 10, 2025, 10:35 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.8

remediation

0.0

relevance

1.3

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.8

remediation

0.0

relevance

1.3

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

CMSimple Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CMSimple

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating