7.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
35.5%
Cross-site request forgery (CSRF) vulnerability in the Change Group Permissions module in CMS Made Simple 1.7.1 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that make permission modifications.
secunia.com/advisories/40031
security.bkis.com/multiple-vulnerabilities-in-cms-made-simple/