3 matches found
CVE-2024-1529
creationtimestamp| type| source ---|---|--- 2024-03-12 17:32:06+00:00| seen| https://t.me/ctinow/205897 2024-03-12 17:32:14+00:00| seen| https://t.me/ctinow/205905...
CVE-2024-1529 Cross-site Scripting in CMS Made Simple
Vulnerability in CMS Made Simple 2.2.14, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting XSS vulnerability through /admin/adduser.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted JavaScript...
CVE-2024-1529
CMS Made Simple 2.2.14 is affected by a Cross-Site Scripting (XSS) vulnerability in the /admin/adduser.php endpoint due to insufficient encoding of user-controlled input across multiple parameters. The issue could allow a remote attacker to deliver a crafted JavaScript payload to an authenticated...