CVE-2021-47732
Unknown Unknown - Not Provided
Stored XSS in CMSimple 5.2 Filebrowser Enables Persistent Script Injection

Publication date: 2025-12-23

Last updated on: 2025-12-23

Assigner: VulnCheck

Description
CMSimple 5.2 contains a stored cross-site scripting vulnerability in the Filebrowser External input field that allows attackers to inject malicious JavaScript. Attackers can place unfiltered JavaScript code that executes when users click on Page or Files tabs, enabling persistent script injection.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-23
Last Modified
2025-12-23
Generated
2026-06-16
AI Q&A
2025-12-23
EPSS Evaluated
2026-06-15
NVD
CVE-2021-47732
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
cmsimple cmsimple 5.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2021-47732 is a stored cross-site scripting (XSS) vulnerability in CMSimple version 5.2. It occurs in the Filebrowser External input field, which does not properly filter or sanitize special characters. This allows attackers to inject malicious JavaScript code that is stored persistently and executes when users click on the Page or Files tabs within the CMS interface. This persistent script injection can lead to client-side attacks such as session hijacking or defacement. [1, 2]

Impact Analysis

This vulnerability can impact you by allowing attackers to execute malicious JavaScript code in the context of your CMS users. This can lead to session hijacking, defacement of the website, or other client-side attacks that compromise user data or the integrity of the CMS interface. Since the script is stored persistently, the attack can affect multiple users over time. [1, 2]

Detection Guidance

This vulnerability can be detected by checking for the presence of malicious or suspicious JavaScript code injected into the 'External:' input field under Settings > CMS > Filebrowser in CMSimple 5.2. You can manually inspect this input field for unusual scripts. Additionally, monitoring HTTP requests and responses for suspicious payloads targeting this input field may help detect exploitation attempts. Since the vulnerability triggers when users click on the Page or Files tabs, testing these interactions with payloads containing script tags can confirm the presence of the vulnerability. Specific commands are not provided in the resources. [1, 2]

Mitigation Strategies

Immediate mitigation steps include avoiding the use of the vulnerable 'External:' input field in the Filebrowser until a patch or update is available. Restrict user permissions to limit who can access and modify this input field. Implement web application firewall (WAF) rules to detect and block malicious JavaScript payloads targeting this input. Educate users to avoid clicking on the Page or Files tabs if suspicious activity is suspected. Monitor logs for unusual activity related to this vulnerability. Applying official patches or updates from CMSimple when available is recommended. [1, 2]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-47732. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart