A cross-site request forgery (CSRF) vulnerability in the My SMTP Contact v1.1.1 plugin for GetSimple CMS allows remote attackers to change the SMTP settings of the contact forms for the webpages of the CMS after an authenticated admin visits a malicious third-party site.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-08-10T22:30:08

Updated: 2024-08-03T22:02:51.852Z

Reserved: 2021-03-29T00:00:00

Link: CVE-2021-29400

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-10T23:15:07.193

Modified: 2024-11-21T06:01:02.923

Link: CVE-2021-29400

cve-icon Redhat

No data.