CVE-2024-55088

Name of the Vulnerable Software and Affected Versions GetSimple CMS CE version 3.3.19

Description The issue is related to Server-Side Request Forgery (SSRF) in the backend plugin module. This allows an attacker to forge requests from the server, potentially leading to unauthorized access or actions. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations For GetSimple CMS CE version 3.3.19, consider disabling the backend plugin module until a patch is available to mitigate the risk of Server-Side Request Forgery (SSRF) exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.