CVE-2018-19421

Published: 2018-11-21T21:29Z

Last Modified: 2024-11-21T03:57Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but Internet Explorer render HTML elements in a .eml file, because of admin/upload-uploadify.php, and validate_safe_file in admin/inc/security_functions.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt