CVE-2026-6182

Name of the Vulnerable Software and Affected Versions Simple Content Management System version 1.0

Description An issue exists in the login functionality within the file '/web/admin/login.php'. Manipulation of the User argument allows for SQL injection, which is a technique where malicious SQL statements are inserted into entry fields for execution, potentially allowing unauthorized access to the database. This attack can be performed remotely.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.