CVE-2010-5052
GetSimple CMS 2.01 - Cross-Site Scripting via val[] Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-5052. PoCs published by High-Tech Bridge SA.
AI-analyzed exploit summary This exploit demonstrates a stored XSS vulnerability in GetSimple CMS 2.01 by injecting malicious JavaScript into the 'val[]' parameter via a crafted form submission. The script executes in the context of the affected site, potentially stealing cookies or performing other malicious actions.
Description
Cross-site scripting (XSS) vulnerability in admin/components.php in GetSimple CMS 2.01 allows remote attackers to inject arbitrary web script or HTML via the val[] parameter.
Exploits (1)
This exploit demonstrates a stored XSS vulnerability in GetSimple CMS 2.01 by injecting malicious JavaScript into the 'val[]' parameter via a crafted form submission. The script executes in the context of the affected site, potentially stealing cookies or performing other malicious actions.