Cms Made Simple Security Vulnerabilities and Issues — Cms Made Simple CVE List

Lucene search

CmsmadesimpleCms Made Simple

4 matches found

CVE•added 2018/03/13 1:29 a.m.•61 views

CVE-2018-1000094

CMS Made Simple version 2.2.5 contains a Remote Code Execution vulnerability in File Manager that can result in Allows an authenticated admin that has access to the file manager to execute code on the server. This attack appear to be exploitable via File upload -> copy to any extension.

7.2CVSS7.2AI score0.55987EPSS

CVE•added 2018/03/12 3:29 a.m.•45 views

CVE-2018-8058

CMS Made Simple (CMSMS) 2.2.6 has XSS in admin/moduleinterface.php via the pagedata parameter.

4.8CVSS4.9AI score0.00235EPSS

CVE•added 2018/03/12 3:29 a.m.•36 views

CVE-2018-7893

CMS Made Simple (CMSMS) 2.2.6 has stored XSS in admin/moduleinterface.php via the metadata parameter.

4.8CVSS4.8AI score0.00235EPSS

CVE•added 2018/03/13 3:29 p.m.•31 views

CVE-2018-1000092

CMS Made Simple version versions 2.2.5 contains a Cross ite Request Forgery (CSRF) vulnerability in Admin profile page that can result in Details can be found here http://dev.cmsmadesimple.org/bug/view/11715. This attack appear to be exploitable via A specially crafted web page. This vulnerability ...

8.8CVSS8.8AI score0.00145EPSS