Lucene search
PRIOn knowledge basePRION:CVE-2016-2784HistoryMay 26, 2016 - 2:59 p.m.
Cross site scripting
2016-05-2614:59:00
PRIOn knowledge base
www.prio-n.com
1
CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.
References
packetstormsecurity.com/files/136897/CMS-Made-Simple-Cache-Poisoning.html
seclists.org/fulldisclosure/2016/May/15
www.cmsmadesimple.org/2016/03/Announcing-CMSMS-1-12-2-kolonia/
www.cmsmadesimple.org/2016/04/Announcing-CMSMS-2-1-3-Black-Point/
www.securityfocus.com/archive/1/538272/100/0/threaded
www.exploit-db.com/exploits/39760/
Related
exploitpack
exploitpack
CMS Made Simple 1.12.1 2.1.3 - Web Server Cache Poisoning
2016-05-04 00:00:00
nvd
nvd
CVE-2016-2784
2016-05-26 14:59:00
cvelist
cvelist
CVE-2016-2784
2016-05-26 14:00:00
zdt
zdt
CMS Made Simple < 2.1.3 / < 1.12.1 - Web Server Cache Poisoning
2016-05-04 00:00:00
packetstorm
packetstorm
CMS Made Simple Cache Poisoning
2016-05-03 00:00:00
openvas
openvas
CMS Made Simple Multiple Vulnerabilities (Jun 2016) - Active Check
2016-06-07 00:00:00
cve
cve
CVE-2016-2784
2016-05-26 14:59:00
exploitdb
exploitdb
CMS Made Simple < 1.12.1 / < 2.1.3 - Web Server Cache Poisoning
2016-05-04 00:00:00