Lucene search
+L

CVE-2017-8912

🗓️ 12 May 2017 06:54:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 80 Views🌐 WEB

CMS Made Simple 2.1.6 allows remote authenticated administrators to execute arbitrary PHP code via the code parameter to admin/editusertag.ph

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
zdt
CMS Made Simple 2.1.6 - Multiple Vulnerabilities
12 May 201700:00
zdt
cnvd
CMS Made Simple Arbitrary Code Execution Vulnerability
24 May 201700:00
cnvd
cvelist
CVE-2017-8912
12 May 201706:54
cvelist
exploitdb
CMS Made Simple 2.1.6 - Multiple Vulnerabilities
10 May 201700:00
exploitdb
exploitpack
CMS Made Simple 2.1.6 - Multiple Vulnerabilities
10 May 201700:00
exploitpack
nvd
CVE-2017-8912
12 May 201707:29
nvd
osv
CVE-2017-8912
12 May 201707:29
osv
packetstorm
CMS Made Simple 2.1.6 Code Execution / Cross Site Scripting
12 May 201700:00
packetstorm
prion
Design/Logic Flaw
12 May 201707:29
prion
ptsecurity
PT-2017-18617 · Cms Made Simple · Cms Made Simple
12 May 201700:00
ptsecurity
Rows per page
NVD
Vulnrichment
ParameterPositionPathDescriptionCWE
coderequest bodycmsms/admin/editusertag.phpRemote Code Execution via code parameter in editusertag.php (PHP code executed on server)CWE-94
grouprequest bodycmsms/admin/addgroup.phpStored Cross-Site Scripting via group/description parameters in addgroup.phpCWE-94
descriptionrequest bodycmsms/admin/addgroup.phpStored Cross-Site Scripting via group/description parameters in addgroup.phpCWE-94

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 01:27Current
7.1High risk
Vulners AI Score7.1
CVSS 26.5
CVSS 37.2
CVSS 3.17.2
EPSS0.03111
SSVC
80