Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-57425
HistoryJul 27, 2021 - 12:00 a.m.

CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2021-57425)

2021-07-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
cms made simple
cross-site scripting
version 2.2.14
php
mysql
smarty
content manager
logic field
security issue
vulnerability
cnvd-2021-57425

EPSS

0.001

Percentile

21.1%

CMS Made Simple is a simple and easy-to-use content management system developed using PHP, MySQL and Smarty template engine.A cross-site scripting vulnerability exists in CMS Made Simple version 2.2.14. The vulnerability can be exploited by attackers to conduct cross-site scripting attacks via the Logic field in the Content Manager feature.

EPSS

0.001

Percentile

21.1%

Related for CNVD-2021-57425