EUVD-2020-12925

Malware in sbrugna...

CVE-2020-20138

Cross Site Scripting XSS vulnerability in the Showtime2 Slideshow module in CMS Made Simple CMSMS 2.2.4...

CMS Made Simple Cross-Site Scripting Vulnerability (CNVD-2020-74073)

CMS Made Simple is a simple, easy-to-use content management system developed using PHP, MySQL and Smarty template engine. A cross-site scripting vulnerability exists in the Showtime2 Slideshow module in CMS Made Simple 2.2.4. No detailed vulnerability details are provided at this time...

CVE-2020-20138

Cross Site Scripting XSS vulnerability in the Showtime2 Slideshow module in CMS Made Simple CMSMS 2.2.4...

CVE-2020-20138

Cross Site Scripting XSS vulnerability in the Showtime2 Slideshow module in CMS Made Simple CMSMS 2.2.4...

Cross site scripting

Cross Site Scripting XSS vulnerability in the Showtime2 Slideshow module in CMS Made Simple CMSMS 2.2.4...

CVE-2020-20138

CMS Made Simple (CMSMS) Showtime2 Slideshow module in version 2.2.4 contains a Cross‑Site Scripting (XSS) vulnerability. The available documents confirm the affected component and version but do not provide details on the root cause, exploit vector, or specific impact in context beyond the XSS la...

CVE-2020-20138

Cross Site Scripting XSS vulnerability in the Showtime2 Slideshow module in CMS Made Simple CMSMS 2.2.4...

CMS Made Simple (CMSMS) 跨站脚本漏洞

CMS Made Simple is a simple, easy-to-use content management system developed using PHP, MySQL and Smarty template engine. A cross-site scripting vulnerability exists in the Showtime2 Slideshow module in CMS Made Simple 2.2.4. No detailed vulnerability details are provided at this time...

CMS Made Simple (CMSMS) Showtime2 - File Upload Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "CMS Made Simple CMSMS Showtime2 File Upload RCE", 'Description' = %q This module exploits a File Upload vulnerability that lead in a RCE in...

CMS Made Simple (CMSMS) Showtime2 File Upload Remote Command Execution Exploit

This Metasploit module exploits a file upload vulnerability that allows for remote command execution in Showtime2 module versions 3.6.2 and below in CMS Made Simple CMSMS. An authenticated user with "Use Showtime2" privilege could exploit the vulnerability. The vulnerability exists in the Showtim...

CMS Made Simple (CMSMS) Showtime2 File Upload Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "CMS Made Simple CMSMS Showtime2 File Upload RCE", 'Description' = %q This module exploits a File Upload vulnerability that lead in a RCE in...

CMS Made Simple (CMSMS) Showtime2 File Upload RCE

This module exploits a File Upload vulnerability that lead in a RCE in Showtime2 module "CMS Made Simple CMSMS Showtime2 File Upload RCE", 'Description' = %q This module exploits a File Upload vulnerability that lead in a RCE in Showtime2 module = 3.6.2 in CMS Made Simple CMSMS. An authenticated...

CMS Made Simple Showtime2 Module 3.6.2 - Authenticated Arbitrary File Upload Exploit

Exploit for php platform in category web applications !/usr/bin/env python Exploit Title: CMS Made Simple authenticated arbitrary file upload in Showtime2 module Exploit Author: Daniele Scanu @ Certimeter Group Vendor Homepage: https://www.cmsmadesimple.org/ Software Link:...

CMS Made Simple Showtime2 Module 3.6.2 - (Authenticated) Arbitrary File Upload

CMS Made Simple Showtime2 Module 3.6.2 - Authenticated Arbitrary File Upload !/usr/bin/env python Exploit Title: CMS Made Simple authenticated arbitrary file upload in Showtime2 module Date: March 2019 Exploit Author: Daniele Scanu @ Certimeter Group Vendor Homepage: https://www.cmsmadesimple.org...

CMS Made Simple Showtime2 Module 3.6.2 - (Authenticated) Arbitrary File Upload

!/usr/bin/env python Exploit Title: CMS Made Simple authenticated arbitrary file upload in Showtime2 module Date: March 2019 Exploit Author: Daniele Scanu @ Certimeter Group Vendor Homepage: https://www.cmsmadesimple.org/ Software Link: http://viewsvn.cmsmadesimple.org/listing.php?repname=showtim...

CMS Made Simple Showtime2 3.6.2 Arbitrary File Upload

!/usr/bin/env python Exploit Title: CMS Made Simple authenticated arbitrary file upload in Showtime2 module Date: March 2019 Exploit Author: Daniele Scanu @ Certimeter Group Vendor Homepage: https://www.cmsmadesimple.org/ Software Link: http://viewsvn.cmsmadesimple.org/listing.php?repname=showtim...

CMS Made Simple (CMSMS) Showtime2 Post Auth Arbitrary File Upload Vulnerability

CMSMS’s Showtime2 module is vulnerable to an arbitrary file upload vulnerability. An authenticated attacker can exploit this by uploading a malicious payload, and gain remote code execution. Recent assessments: wchen-r7 at September 12, 2019 6:07pm UTC reported: Background CMS Made Simple CMSMS i...