5 matches found
CMS Made Simple 2.2.7 - (Authenticated) Remote Code Execution
CMS Made Simple 2.2.7 - Authenticated Remote Code Execution Exploit Title: CMS Made Simple 2.2.7 - Remote Code Execution Date: 2018-11-04 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage:...
CMS Made Simple 2.2.7 - (Authenticated) Remote Code Execution
Exploit Title: CMS Made Simple 2.2.7 - Remote Code Execution Date: 2018-11-04 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://www.cmsmadesimple.org/ Software Link:...
CVE-2018-10517
creationtimestamp| type| source ---|---|--- 2018-11-05 22:23:34+00:00| published-proof-of-concept| https://t.me/VulnerabilityNews/2876 2021-09-21 06:42:54+00:00| published-proof-of-concept| https://t.me/pwnwikizhchannel/54...
CMS Made Simple 2.2.7 Remote Code Execution
Exploit Title: CMS Made Simple 2.2.7 - Remote Code Execution Date: 04-11-2018 Exploit Author: Lucian Ioan Nitescu Contact: https://twitter.com/LucianNitescu Webiste: https://nitesculucian.github.io Vendor Homepage: https://www.cmsmadesimple.org/ Software Link:...
CVE-2018-10517
CVE-2018-10517 concerns CMS Made Simple (CMSMS) up to version 2.2.7. The vulnerability lies in the admin dashboard’s “module import” operation, where an XML Package can include a data element with base64-encoded PHP code, enabling a remote code execution when exploited by an authenticated adminis...