Cms Made Simple@2.1 Security Vulnerabilities and Issues — Cms Made Simple@2.1 CVE List

Lucene search

CmsmadesimpleCms Made Simple2.1

2 matches found

CVE•added 2016/05/26 2:59 p.m.•56 views

CVE-2016-2784

CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.

4.7CVSS4.5AI score0.06088EPSS

CVE•added 2005/07/27 4:0 a.m.•38 views

CVE-2005-2392

Cross-site scripting (XSS) vulnerability in index.php for CMSimple 2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in the search function.

4.3CVSS5.8AI score0.00558EPSS