{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-11975", "assignerOrgId": "596c5446-0ce5-4ba2-aa66-48b3b757a647", "state": "PUBLISHED", "assignerShortName": "Checkmarx", "dateReserved": "2026-06-11T11:55:32.835Z", "datePublished": "2026-06-17T12:18:28.771Z", "dateUpdated": "2026-06-17T12:18:28.771Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "596c5446-0ce5-4ba2-aa66-48b3b757a647", "shortName": "Checkmarx", "dateUpdated": "2026-06-17T12:18:28.771Z"}, "title": "Stored Cross-Site Scripting (XSS) in SimplCommerce News Module Admin Interface", "datePublic": "2026-06-17T12:01:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-63", "descriptions": [{"lang": "en", "value": "CAPEC-63 Cross-Site Scripting (XSS)"}]}], "affected": [{"vendor": "simplcommerce", "product": "SimplCommerce", "repo": "https://github.com/simplcommerce/SimplCommerce", "versions": [{"status": "affected", "version": "0", "lessThan": "6142d3b5", "changes": [{"at": "6142d3b5", "status": "unaffected"}], "versionType": "git"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "Stored cross-site scripting (XSS) in NewsItemApiController\u00a0In SimplCommerce prior to commit 6142d3b5\u00a0allows an authenticated administrator to execute arbitrary JavaScript via the ShortContent and FullContent fields, which are stored without HTML\u00a0sanitization and rendered unencoded via @Html.Raw()", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Stored cross-site scripting (XSS) in <code>NewsItemApiController</code>&nbsp;In SimplCommerce prior to commit <code>6142d3b5</code>&nbsp;allows an authenticated administrator to execute arbitrary JavaScript via the <code>ShortContent</code> and <code>FullContent</code> fields, which are stored without HTML&nbsp;<span>sanitization and rendered unencoded via </span><code>@Html.Raw()</code></p>"}]}], "references": [{"url": "https://github.com/simplcommerce/SimplCommerce/pull/1151"}, {"url": "https://github.com/simplcommerce/SimplCommerce/commit/6142d3b5147899e0edb41663ae20183878ab39f7", "tags": ["patch"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "userInteraction": "PASSIVE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "LOW", "subIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.2, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:H/SI:H/SA:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.2"}}}}

{}

{}

{}

{}