CVE-2026-27202
HIGH WAF: High
CVSS 7.5
Published: 2026-02-21
CWE-22
GetSimple CMS is a content management system. All versions of GetSimple CMS have a flaw in the Uploaded Files feature that allows for arbitrary file reads. This issue has not been fixed at the time of publication.
WAF Coverage Analysis
Path Traversal
High WAF Coverage
OWASP: A01:2021 Broken Access Control
930xxx - Local File Inclusion
Affected Software
| Vendor | Product | Version |
|---|---|---|
| getsimple-ce | getsimple_cms | 3.3.22 |
References
- github.com (Exploit, Vendor Advisory)