CVE-2021-43741

CMSimple 5.4 is vulnerable to Directory Traversal. The vulnerability exists when a user changes the file name to malicious file on config.php leading to remote code execution. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt