CVE-2026-26351 | GetSimpleCMS Community Edition up to 3.3.16/3.3.21 components.php safe_slash_html slug cross site scripting (GHSA-95f7-vm92-8gpx)

A vulnerability has been found in GetSimpleCMS Community Edition up to 3.3.16/3.3.21 and classified as problematic. Affected by this vulnerability is the function safe_slash_html of the file components.php. Performing a manipulation of the argument slug results in cross site scripting.

This vulnerability is identified as CVE-2026-26351. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More