CmsmadesimpleCVEs & Vulnerabilities

157 CVEs affecting Cmsmadesimple products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

cms made simple 832form builder 3bable\ 1cmsmadesimple 1file manager 1
CVE-2018-10029MEDIUM

CMS Made Simple (aka CMSMS) 2.2.7 has Reflected XSS in admin/moduleinterface.php via the m1_name parameter, related to moduledepends, a different vulnerability than CVE-2017-16799.

11 Apr 2018
4.8
CVSS
CVE-2018-1000092HIGH

CMS Made Simple version versions 2.2.5 contains a Cross ite Request Forgery (CSRF) vulnerability in Admin profile page that can result in Details can be found here http://dev.cmsmadesimple.org/bug/view/11715. This attack appear to be exploitable via A specially crafted web page. This vulnerability appears to have been fixed in 2.2.6.

13 Mar 2018
8.8
CVSS
CVE-2018-1000094HIGHpoc

CMS Made Simple version 2.2.5 contains a Remote Code Execution vulnerability in File Manager that can result in Allows an authenticated admin that has access to the file manager to execute code on the server. This attack appear to be exploitable via File upload -> copy to any extension.

13 Mar 2018
7.2
CVSS
CVE-2018-8058MEDIUM

CMS Made Simple (CMSMS) 2.2.6 has XSS in admin/moduleinterface.php via the pagedata parameter.

12 Mar 2018
4.8
CVSS
CVE-2018-7893MEDIUM

CMS Made Simple (CMSMS) 2.2.6 has stored XSS in admin/moduleinterface.php via the metadata parameter.

12 Mar 2018
4.8
CVSS
CVE-2018-7448HIGHpoc

Remote code execution vulnerability in /cmsms-2.1.6-install.php/index.php in CMS Made Simple version 2.1.6 allows remote attackers to inject arbitrary PHP code via the "timezone" parameter in step 4 of a fresh installation procedure.

26 Feb 2018
7.5
CVSS
CVE-2018-5965MEDIUM

CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/moduleinterface.php via the m1_errors parameter.

25 Jan 2018
4.8
CVSS
CVE-2018-5964MEDIUM

CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/moduleinterface.php via the m1_messages parameter.

25 Jan 2018
4.8
CVSS
CVE-2018-5963MEDIUM

CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/addbookmark.php via the title parameter.

25 Jan 2018
4.8
CVSS
CVE-2017-1000454HIGH

CMS Made Simple 2.1.6, 2.2, 2.2.1 are vulnerable to Smarty Template Injection in some core components, resulting in local file read before 2.2, and local file inclusion since 2.2.1

2 Jan 2018
7.8
CVSS
CVE-2017-1000453CRITICAL

CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution.

2 Jan 2018
9.8
CVSS
CVE-2017-17735CRITICAL

CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login information in cookies.

18 Dec 2017
9.8
CVSS
CVE-2017-17734CRITICAL

CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login information in sessions.

18 Dec 2017
9.8
CVSS
CVE-2017-16799MEDIUM

In CMS Made Simple 2.2.3.1, in modules/New/action.addcategory.php, stored XSS is possible via the m1_name parameter to admin/moduleinterface.php during addition of a category, a related issue to CVE-2010-3882.

12 Nov 2017
5.4
CVSS
CVE-2017-16798MEDIUM

In CMS Made Simple 2.2.3.1, the is_file_acceptable function in modules/FileManager/action.upload.php only blocks file extensions that begin or end with a "php" substring, which allows remote attackers to bypass intended access restrictions or trigger XSS via other extensions, as demonstrated by .phtml, .pht, .html, or .svg.

12 Nov 2017
5.4
CVSS
CVE-2017-16784MEDIUM

In CMS Made Simple 2.2.2, there is Reflected XSS via the cntnt01detailtemplate parameter.

11 Nov 2017
6.1
CVSS
CVE-2017-16783CRITICALpoc

In CMS Made Simple 2.1.6, there is Server-Side Template Injection via the cntnt01detailtemplate parameter.

11 Nov 2017
9.8
CVSS
CVE-2017-11405MEDIUM

In CMS Made Simple (CMSMS) 2.2.2, remote authenticated administrators can upload a .php file via a CMSContentManager action to admin/moduleinterface.php, followed by a FilePicker action to admin/moduleinterface.php in which type=image is changed to type=file.

18 Jul 2017
4.9
CVSS
CVE-2017-11404MEDIUM

In CMS Made Simple (CMSMS) 2.2.2, remote authenticated administrators can upload a .php file via a FileManager action to admin/moduleinterface.php.

18 Jul 2017
4.9
CVSS
CVE-2017-9668MEDIUM

In admin\addgroup.php in CMS Made Simple 2.1.6, when adding a user group, there is no XSS filtering, resulting in storage-type XSS generation, via the description parameter in an addgroup action.

19 Jun 2017
6.1
CVSS
CVE-2017-8912HIGHpoc

CMS Made Simple (CMSMS) 2.1.6 allows remote authenticated administrators to execute arbitrary PHP code via the code parameter to admin/editusertag.php, related to the CreateTagFunction and CallUserTag functions. NOTE: the vendor reportedly has stated this is "a feature, not a bug.

12 May 2017
7.2
CVSS
CVE-2017-7257MEDIUM

XSS exists in the CMS Made Simple (CMSMS) 2.1.6 "Content-->News-->Add Article" feature via the m1_content parameter. Someone must login to conduct the attack.

24 Mar 2017
5.4
CVSS
CVE-2017-7256MEDIUM

XSS exists in the CMS Made Simple (CMSMS) 2.1.6 "Content-->News-->Add Article" feature via the m1_summary parameter. Someone must login to conduct the attack.

24 Mar 2017
5.4
CVSS
CVE-2017-7255MEDIUM

XSS exists in the CMS Made Simple (CMSMS) 2.1.6 "Content-->News-->Add Article" feature via the m1_title parameter. Someone must login to conduct the attack.

24 Mar 2017
5.4
CVSS
CVE-2017-6556MEDIUM

Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) 2.1.6 allows remote authenticated users to inject arbitrary web script or HTML via the "adminpage > sitesetting > General Settings > globalmetadata" field.

9 Mar 2017
5.4
CVSS
CVE-2017-6555MEDIUM

Cross-site scripting (XSS) vulnerability in /admin/moduleinterface.php in CMS Made Simple 2.1.6 allows remote authenticated users to inject arbitrary web script or HTML via the m1_description parameter (aka "Design Manager > Categories > Category Description").

9 Mar 2017
5.4
CVSS
CVE-2017-6072MEDIUM

CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via defaultadmin.

21 Feb 2017
5.3
CVSS
CVE-2017-6071MEDIUM

CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via exportxml.

21 Feb 2017
5.3
CVSS
CVE-2017-6070CRITICAL

CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to execute PHP code via the cntnt01fbrp_forma_form_template parameter in admin_store_form.

21 Feb 2017
9.8
CVSS
CVE-2016-7904HIGH

Cross-site request forgery (CSRF) vulnerability in CMS Made Simple before 2.1.6 allows remote attackers to hijack the authentication of administrators for requests that create accounts via an admin/adduser.php request.

16 Jan 2017
8.0
CVSS
CVE-2016-2784MEDIUMpoc

CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.

26 May 2016
4.7
CVSS
CVE-2014-2245MEDIUM

SQL injection vulnerability in the News module in CMS Made Simple (CMSMS) before 1.11.10 allows remote authenticated users with the "Modify News" permission to execute arbitrary SQL commands via the sortby parameter to admin/moduleinterface.php. NOTE: some of these details are obtained from third party information.

5 Mar 2014
6.0
CVSS
CVE-2014-2092MEDIUM

Cross-site scripting (XSS) vulnerability in lib/filemanager/ImageManager/editorFrame.php in CMS Made Simple 1.11.10 allows remote attackers to inject arbitrary web script or HTML via the action parameter, a different issue than CVE-2014-0334. NOTE: the original disclosure also reported issues that may not cross privilege boundaries.

2 Mar 2014
4.3
CVSS
CVE-2014-0334LOWpoc

Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple allow remote authenticated users to inject arbitrary web script or HTML via (1) the group parameter to admin/addgroup.php, (2) the htmlblob parameter to admin/addhtmlblob.php, the (3) title or (4) url parameter to admin/addbookmark.php, (5) the stylesheet_name parameter to admin/copystylesheet.php, (6) the template_name parameter to admin/copytemplate.php, the (7) title or (8) url parameter to admin/editbookmark.php, (9) the template parameter to admin/listtemplates.php, or (10) the css_name parameter to admin/listcss.php, a different issue than CVE-2014-2092.

2 Mar 2014
3.5
CVSS
CVE-2013-3929LOW

Cross-site scripting (XSS) vulnerability in admin/editevent.php in CMS Made Simple (CMSMS) 1.11.9 allows remote authenticated users with the "Modify Events" permission to inject arbitrary web script or HTML via the handler parameter.

9 Dec 2013
2.1
CVSS
CVE-2013-4167MEDIUM

Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

12 Oct 2013
4.3
CVSS
CVE-2012-6064LOW

Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) before 1.11.2.1 allows remote authenticated administrators to delete arbitrary files via a .. (dot dot) in the deld parameter. NOTE: this can be leveraged using CSRF (CVE-2012-5450) to allow remote attackers to delete arbitrary files.

3 Dec 2012
3.5
CVSS
CVE-2012-5450MEDIUM

Cross-site request forgery (CSRF) vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) 1.11.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that delete arbitrary files via the deld parameter.

3 Dec 2012
6.8
CVSS
CVE-2012-1992MEDIUM

Cross-site scripting (XSS) vulnerability in admin/edituser.php in CMS Made Simple 1.10.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the email parameter (aka the Email Address field in the Edit User template).

11 Apr 2012
4.3
CVSS
CVE-2011-3718MEDIUM

CMS Made Simple (CMSMS) 1.9.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/TinyMCE/TinyMCE.module.php and certain other files. NOTE: this might overlap CVE-2007-5444.

24 Sep 2011
5.0
CVSS
CVE-2010-4663CRITICAL

Unspecified vulnerability in the News module in CMS Made Simple (CMSMS) before 1.9.1 has unknown impact and attack vectors.

8 Jun 2011
10.0
CVSS
CVE-2010-3884MEDIUMpoc

Cross-site request forgery (CSRF) vulnerability in CMS Made Simple 1.8.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that reset the administrative password. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

9 Oct 2010
6.8
CVSS
CVE-2010-3883MEDIUM

Cross-site request forgery (CSRF) vulnerability in the Change Group Permissions module in CMS Made Simple 1.7.1 and earlier allows remote attackers to hijack the authentication of arbitrary users for requests that make permission modifications.

9 Oct 2010
6.8
CVSS
CVE-2010-3882MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.7.1 and earlier allow remote attackers to inject arbitrary web script or HTML via input to the (1) Add Pages, (2) Add Global Content, (3) Edit Global Content, (4) Add Article, (5) Add Category, (6) Add Field Definition, or (7) Add Shortcut module.

9 Oct 2010
4.3
CVSS
CVE-2010-2797HIGH

Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642.

9 Oct 2010
7.5
CVSS
CVE-2010-1482MEDIUM

Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the date_format_string parameter.

12 May 2010
4.3
CVSS
CVE-2008-5642MEDIUMpoc

Directory traversal vulnerability in admin/login.php in CMS Made Simple 1.4.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a cms_language cookie.

17 Dec 2008
5.0
CVSS
CVE-2007-6656HIGHpoc

SQL injection vulnerability in content_css.php in the TinyMCE module for CMS Made Simple 1.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the templateid parameter.

4 Jan 2008
7.5
CVSS