2 matches found
CVE-2020-13660
CMS Made Simple through 2.2.14 allows XSS via a crafted File Picker profile name...
CVE-2020-13660
CVE-2020-13660 concerns CMS Made Simple up to version 2.2.14, where an XSS vulnerability exists in the File Picker profile name. The connected sources consistently describe a cross-site scripting issue stemming from insufficient input/validation handling in the web application, enabling crafted p...