Ghostwire

CVE-2026-6184: A weakness has been identified in code-projects Simple Content Management System 1.0. This affects an unknown part of...

MEDIUM CVSS 5.5 Exploit Available 1 PoC

Published: April 13, 2026 | Last Modified: April 13, 2026

Description

A weakness has been identified in code-projects Simple Content Management System 1.0. This affects an unknown part of the file /web/admin/welcome.php. Executing a manipulation of the argument News Title can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be used for attacks.

Ghostwire Analysis — What This Means Practically

Medium CVSS score indicates moderate risk — exploitation requires specific conditions or results in limited impact.
1 proof-of-concept exploit available on GitHub. Public exploit code lowers the barrier for both researchers and attackers.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Proof-of-Concept Exploits (1)

Xmyronn/CVE-2026-6184-stored-XSS

CVE-2026-6184: A weakness has been identified in code-projects Simple Content Management System 1.0. This affects an unknown part of...

Description

Ghostwire Analysis — What This Means Practically

Proof-of-Concept Exploits (1)

Security Coverage (2 articles)

References