CVE-2010-4513

zimplit_cms < 3.0 - Cross-Site Scripting via file and client Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2010-4513. PoCs published by Yashar shahinzadeh, High-Tech Bridge SA.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Zimplit CMS 3.0, including XSS, CSRF, directory traversal, local file disclosure, password change, and shell upload. It provides functional proof-of-concept code and detailed technical analysis of the affected functions.

Description

Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS 3.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) file parameter in a load action to zimplit.php and (2) client parameter to English_manual_version_2.php.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Yashar shahinzadeh · textwebappsphp
https://www.exploit-db.com/exploits/28272

The exploit demonstrates multiple vulnerabilities in Zimplit CMS 3.0, including XSS, CSRF, directory traversal, local file disclosure, password change, and shell upload. It provides functional proof-of-concept code and detailed technical analysis of the affected functions.

Classification
Working Poc 95%
Attack Type
Xss | Info Leak | Auth Bypass | Rce
Complexity
Moderate
Reliability
Reliable
Target: Zimplit CMS 3.0
Auth required
Prerequisites: Authenticated session (admin privileges for some exploits) · Network access to the target
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by High-Tech Bridge SA · textwebappsphp
https://www.exploit-db.com/exploits/35063

The exploit demonstrates a reflected XSS vulnerability in Zimplit CMS by injecting a malicious script via the 'file' parameter in the 'load' action. The payload executes arbitrary JavaScript in the context of the affected site, potentially stealing cookies or performing other client-side attacks.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Zimplit CMS (version not specified)
No auth needed
Prerequisites: Access to a vulnerable Zimplit CMS instance · User interaction to trigger the malicious URL
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by High-Tech Bridge SA · textwebappsphp
https://www.exploit-db.com/exploits/35064

The exploit demonstrates a reflected XSS vulnerability in Zimplit CMS by injecting a malicious script via the 'client' parameter in the URL. The payload executes arbitrary JavaScript in the context of the affected site, potentially stealing cookies or performing other malicious actions.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Zimplit CMS (version not specified)
No auth needed
Prerequisites: Access to a vulnerable Zimplit CMS instance · User interaction to click the crafted URL
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45252
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/515078/100/0/threaded
Exploit mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=129182251500541&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/41629

Scores

EPSS 0.0181
EPSS Percentile 75.8%

Details

CWE
CWE-79
Status published
Products (1)
zimplit/zimplit_cms < 3.0
Published Dec 09, 2010
Tracked Since Feb 18, 2026