CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

RedhatCVE•added 2025/05/22 8:7 a.m.•8 views

CVE-2019-10106

CMS Made Simple 2.2.10 has XSS via the 'moduleinterface.php' Name field, which is reachable via an "Add Category" action to the "Site Admin Settings - News module" section...

5.4CVSS5.9AI score0.00254EPSS

Exploits1References1

Prion•added 2019/03/26 10:29 p.m.•13 views

Design/Logic Flaw

CMS Made Simple 2.2.10 has XSS via the 'moduleinterface.php' Name field, which is reachable via an "Add Category" action to the "Site Admin Settings - News module" section...

3.5CVSS5.2AI score0.00254EPSS

Exploits1References1Affected Software1

OSV•added 2019/03/26 10:29 p.m.•2 views

CVE-2019-10106

CMS Made Simple 2.2.10 has XSS via the 'moduleinterface.php' Name field, which is reachable via an "Add Category" action to the "Site Admin Settings - News module" section...

5.4CVSS5.8AI score

Exploits0References1

Cvelist•added 2019/03/26 9:52 p.m.•17 views

CVE-2019-10106

CMS Made Simple 2.2.10 has XSS via the 'moduleinterface.php' Name field, which is reachable via an "Add Category" action to the "Site Admin Settings - News module" section...

5.3AI score0.00254EPSS

Exploits1References1

CVE•added 2019/03/26 9:52 p.m.•53 views

CVE-2019-10106

CMS Made Simple 2.2.10 exposes a Cross-Site Scripting (XSS) vulnerability in the News module. The issue stems from lack of proper validation in the moduleinterface.php Name field, reachable via Add Category under Site Admin Settings. Multiple sources (NVD, RH, CNVD, CVE list) corroborate an XSS c...

5.4CVSS5.2AI score0.00254EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by