CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2026/01/09 12:40 p.m.•8 views

CVE-2023-43353

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the extra parameter in the news menu component...

5.4CVSS6.9AI score0.00473EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 12:39 p.m.•5 views

CVE-2023-43354

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Profiles parameter in the Extensions -MicroTiny WYSIWYG editor component...

5.4CVSS6.9AI score0.00461EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2018-1864

Malware in sbrugna...

8.8CVSS8.8AI score0.01086EPSS

Exploits1References2

RedhatCVE•added 2025/05/23 4:23 a.m.•6 views

CVE-2023-43360

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Top Directory parameter in the File Picker Menu component...

5.4CVSS6.9AI score0.00544EPSS

Exploits1

RedhatCVE•added 2025/05/23 1:44 a.m.•7 views

CVE-2023-43355

Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the password and password again parameters in the My Preferences - Add user component...

5.4CVSS7.1AI score0.00485EPSS

Exploits1References1

Positive Technologies•added 2023/09/28 12:0 a.m.•8 views

PT-2023-29017 · Unknown · Cms Made Simple

Name of the Vulnerable Software and Affected Versions: CMSmadesimple version 2.2.18 Description: A File upload vulnerability in CMSmadesimple allows a local attacker to upload a pdf file with hidden Cross Site Scripting XSS. Recommendations: For CMSmadesimple version 2.2.18, consider disabling th...

5.4CVSS5.2AI score0.00546EPSS

Exploits1References6

Positive Technologies•added 2023/09/25 12:0 a.m.•6 views

PT-2023-28787 · Unknown · Cms Made Simple

Name of the Vulnerable Software and Affected Versions: cmsmadesimple version 2.2.18 Description: A Cross-Site Scripting XSS issue allows a local attacker to execute arbitrary code via a crafted payload injected into the Database Name, DataBase User, or Database Port components. Recommendations: F...

6.1CVSS6.2AI score0.00645EPSS

Exploits1References5