3 matches found
CMS Made Simple 2.2.3.1 Multiple Vulnerabilities
CMS Made Simple is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:cmsmadesimple:cmsmadesimple...
CVE-2017-16799
CMS Made Simple is affected by CVE-2017-16799: a stored XSS in the New category flow. The vulnerability is in CMSMS 2.2.3.1, specifically via the m1_name parameter passed to admin/moduleinterface.php during category creation (module/action.addcategory.php). The issue enables injection of script/H...
CVE-2017-16799
In CMS Made Simple 2.2.3.1, in modules/New/action.addcategory.php, stored XSS is possible via the m1name parameter to admin/moduleinterface.php during addition of a category, a related issue to CVE-2010-3882...