Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2010-3882
cve-2010-3882
xss
cms made simple
web script injection
html injection
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
46.1%
Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.7.1 and earlier allow remote attackers to inject arbitrary web script or HTML via input to the (1) Add Pages, (2) Add Global Content, (3) Edit Global Content, (4) Add Article, (5) Add Category, (6) Add Field Definition, or (7) Add Shortcut module.
Affected configurations
Node
cmsmadesimplecms_made_simpleRange≤1.7.1
ORcmsmadesimplecms_made_simpleMatch0.10
ORcmsmadesimplecms_made_simpleMatch0.10.3
ORcmsmadesimplecms_made_simpleMatch0.10.4
ORcmsmadesimplecms_made_simpleMatch0.11
ORcmsmadesimplecms_made_simpleMatch0.11beta5
ORcmsmadesimplecms_made_simpleMatch0.11beta6
ORcmsmadesimplecms_made_simpleMatch0.11.1
ORcmsmadesimplecms_made_simpleMatch0.11.2
ORcmsmadesimplecms_made_simpleMatch0.12
ORcmsmadesimplecms_made_simpleMatch0.12beta1
ORcmsmadesimplecms_made_simpleMatch0.12beta2
ORcmsmadesimplecms_made_simpleMatch0.12.1
ORcmsmadesimplecms_made_simpleMatch0.12.2
ORcmsmadesimplecms_made_simpleMatch0.13beta1
ORcmsmadesimplecms_made_simpleMatch0.13beta2
ORcmsmadesimplecms_made_simpleMatch0.13beta3
ORcmsmadesimplecms_made_simpleMatch1.0
ORcmsmadesimplecms_made_simpleMatch1.0beta1
ORcmsmadesimplecms_made_simpleMatch1.0beta2
ORcmsmadesimplecms_made_simpleMatch1.0beta3
ORcmsmadesimplecms_made_simpleMatch1.0beta4
ORcmsmadesimplecms_made_simpleMatch1.0beta5
ORcmsmadesimplecms_made_simpleMatch1.0beta6
ORcmsmadesimplecms_made_simpleMatch1.0.1
ORcmsmadesimplecms_made_simpleMatch1.0.2
ORcmsmadesimplecms_made_simpleMatch1.0.3
ORcmsmadesimplecms_made_simpleMatch1.0.4
ORcmsmadesimplecms_made_simpleMatch1.0.5
ORcmsmadesimplecms_made_simpleMatch1.0.6
ORcmsmadesimplecms_made_simpleMatch1.0.7
ORcmsmadesimplecms_made_simpleMatch1.0.8
ORcmsmadesimplecms_made_simpleMatch1.1
ORcmsmadesimplecms_made_simpleMatch1.1rc1
ORcmsmadesimplecms_made_simpleMatch1.1rc2
ORcmsmadesimplecms_made_simpleMatch1.1rc3
ORcmsmadesimplecms_made_simpleMatch1.1.1
ORcmsmadesimplecms_made_simpleMatch1.1.2
ORcmsmadesimplecms_made_simpleMatch1.1.3.1
ORcmsmadesimplecms_made_simpleMatch1.1.4.1
ORcmsmadesimplecms_made_simpleMatch1.2
ORcmsmadesimplecms_made_simpleMatch1.2beta1
ORcmsmadesimplecms_made_simpleMatch1.2beta2
ORcmsmadesimplecms_made_simpleMatch1.2beta3
ORcmsmadesimplecms_made_simpleMatch1.2rc1
ORcmsmadesimplecms_made_simpleMatch1.2.1
ORcmsmadesimplecms_made_simpleMatch1.2.2
ORcmsmadesimplecms_made_simpleMatch1.2.3
ORcmsmadesimplecms_made_simpleMatch1.2.4
ORcmsmadesimplecms_made_simpleMatch1.2.5
ORcmsmadesimplecms_made_simpleMatch1.3
ORcmsmadesimplecms_made_simpleMatch1.3beta1
ORcmsmadesimplecms_made_simpleMatch1.3beta2
ORcmsmadesimplecms_made_simpleMatch1.3.1
ORcmsmadesimplecms_made_simpleMatch1.4
ORcmsmadesimplecms_made_simpleMatch1.4beta1
ORcmsmadesimplecms_made_simpleMatch1.4beta2
ORcmsmadesimplecms_made_simpleMatch1.4.1
ORcmsmadesimplecms_made_simpleMatch1.5
ORcmsmadesimplecms_made_simpleMatch1.5beta1
ORcmsmadesimplecms_made_simpleMatch1.5.1
ORcmsmadesimplecms_made_simpleMatch1.5.2
ORcmsmadesimplecms_made_simpleMatch1.5.3
ORcmsmadesimplecms_made_simpleMatch1.5.4
ORcmsmadesimplecms_made_simpleMatch1.6
ORcmsmadesimplecms_made_simpleMatch1.6.1
ORcmsmadesimplecms_made_simpleMatch1.6.2
ORcmsmadesimplecms_made_simpleMatch1.6.3
ORcmsmadesimplecms_made_simpleMatch1.6.4
ORcmsmadesimplecms_made_simpleMatch1.6.5
ORcmsmadesimplecms_made_simpleMatch1.6.6
ORcmsmadesimplecms_made_simpleMatch1.6.7
ORcmsmadesimplecms_made_simpleMatch1.6.8
ORcmsmadesimplecms_made_simpleMatch1.7
Related
cvelist
cvelist
CVE-2010-3882
2022-10-03 16:20:56
CVE-2017-16799
2017-11-12 18:00:00
prion
prion
Cross site scripting
2010-10-08 21:00:00
Design/Logic Flaw
2017-11-12 18:29:00
nvd
nvd
CVE-2010-3882
2010-10-08 21:00:05
CVE-2017-16799
2017-11-12 18:29:00
cve
cve
CVE-2017-16799
2017-11-12 18:29:00
openvas
openvas
CMS Made Simple 2.2.3.1 Multiple Vulnerabilities
2017-11-13 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
46.1%
Related for CVE-2010-3882