CMS Made Simple is a simple and easy-to-use content management system developed using PHP, MySQL and Smarty template engine.A cross-site scripting vulnerability exists in CMS Made Simple version 2.2.14. The vulnerability can be exploited by attackers to conduct cross-site scripting attacks via the Logic field in the Content Manager feature.