cbcvebase.

Cmsmadesimple Cms Made Simple vulnerabilities

153 known vulnerabilities affecting cmsmadesimple/cms_made_simple.

Total CVEs
153
CISA KEV
0
Public exploits
19
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH40MEDIUM101LOW4

Vulnerabilities

Page 2 of 8
CVE-2020-24860P4MEDIUMCVSS 5.4PoCv2.2.142020-10-01
CVE-2020-24860 [MEDIUM] CWE-79 CVE-2020-24860: CMS Made Simple 2.2.14 allows an authenticated user with access to the Content Manager to edit conte CMS Made Simple 2.2.14 allows an authenticated user with access to the Content Manager to edit content and put persistent XSS payload in the affected text fields. The user can get cookies from every authenticated user who visits the website.
nvd
CVE-2010-3884P4MEDIUMCVSS 6.8PoC≤ 1.8.12010-10-08
CVE-2010-3884 [MEDIUM] CWE-352 CVE-2010-3884: Cross-site request forgery (CSRF) vulnerability in CMS Made Simple 1.8.1 and earlier allows remote a Cross-site request forgery (CSRF) vulnerability in CMS Made Simple 1.8.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that reset the administrative password. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd
CVE-2021-28935P4MEDIUMCVSS 5.4PoCv2.2.152021-03-30
CVE-2021-28935 [MEDIUM] CWE-79 CVE-2021-28935: CMS Made Simple (CMSMS) 2.2.15 allows authenticated XSS via the /admin/addbookmark.php script throug CMS Made Simple (CMSMS) 2.2.15 allows authenticated XSS via the /admin/addbookmark.php script through the Site Admin > My Preferences > Title field.
nvd
CVE-2016-2784P4MEDIUMCVSS 4.7PoCv1.0v1.0.1+78 more2016-05-26
CVE-2016-2784 [MEDIUM] CWE-79 CVE-2016-2784: CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.
nvd
CVE-2019-9693P3HIGHCVSS 8.8fixed in 2.2.102019-03-11
CVE-2019-9693 [HIGH] CWE-89 CVE-2019-9693: In CMS Made Simple (CMSMS) before 2.2.10, an authenticated user can achieve SQL Injection in class.s In CMS Made Simple (CMSMS) before 2.2.10, an authenticated user can achieve SQL Injection in class.showtime2_data.php via the functions _updateshow (parameter show_id), _inputshow (parameter show_id), _Getshowinfo (parameter show_id), _Getpictureinfo (parameter picture_id), _AdjustNameSeq (parameter shownumber), _Updatepicture (parameter picture_id), and
nvd
CVE-2019-9060P3HIGHCVSS 7.5v2.2.82021-09-17
CVE-2019-9060 [HIGH] CWE-22 CVE-2019-9060: An issue was discovered in CMS Made Simple 2.2.8. It is possible to achieve unauthenticated path tra An issue was discovered in CMS Made Simple 2.2.8. It is possible to achieve unauthenticated path traversal in the CGExtensions module (in the file action.setdefaulttemplate.php) with the m1_filename parameter; and through the action.showmessage.php file, it is possible to read arbitrary file content (by using that path traversal with m1_prefname set to c
nvd
CVE-2019-9057P3HIGHCVSS 8.8≤ 2.2.82019-03-26
CVE-2019-9057 [HIGH] CWE-502 CVE-2019-9057: An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to reach An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to reach an unserialize call with an untrusted parameter, and achieve authenticated object injection.
nvd
CVE-2019-9056P3HIGHCVSS 8.8v2.2.82019-04-11
CVE-2019-9056 [HIGH] CWE-502 CVE-2019-9056: An issue was discovered in CMS Made Simple 2.2.8. In the module FrontEndUsers (in the file class.Fro An issue was discovered in CMS Made Simple 2.2.8. In the module FrontEndUsers (in the file class.FrontEndUsersManipulate.php or class.FrontEndUsersManipulator.php), it is possible to reach an unserialize call with an untrusted __FEU__ cookie, and achieve authenticated object injection.
nvd
CVE-2019-9061P3HIGHCVSS 8.8≤ 2.2.82019-03-26
CVE-2019-9061 [HIGH] CWE-502 CVE-2019-9061: An issue was discovered in CMS Made Simple 2.2.8. In the module ModuleManager (in the file action.in An issue was discovered in CMS Made Simple 2.2.8. In the module ModuleManager (in the file action.installmodule.php), it is possible to reach an unserialize call with untrusted input and achieve authenticated object injection by using the "install module" feature.
nvd
CVE-2018-1000158P3HIGHCVSS 8.8v2.2.72018-04-18
CVE-2018-1000158 [HIGH] CWE-732 CVE-2018-1000158: cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of sen cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of send_recovery_email in the line "$url = $config['admin_url'] . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker controlled server can be created by using a hos
nvd
CVE-2006-6845P4MEDIUMCVSS 6.8PoCv1.0.22006-12-31
CVE-2006-6845 [MEDIUM] CVE-2006-6845: Cross-site scripting (XSS) vulnerability in index.php in CMS Made Simple 1.0.2 allows remote attacke Cross-site scripting (XSS) vulnerability in index.php in CMS Made Simple 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the cntnt01searchinput parameter in a Search action.
nvd
CVE-2021-28998P3HIGHCVSS 7.2≤ 2.2.152023-05-08
CVE-2021-28998 [HIGH] CWE-434 CVE-2021-28998: File upload vulnerability in CMS Made Simple through 2.2.15 allows remote authenticated attackers to File upload vulnerability in CMS Made Simple through 2.2.15 allows remote authenticated attackers to gain a webshell via a crafted phar file.
nvd
CVE-2018-10519P3HIGHCVSS 8.8v2.2.72018-04-27
CVE-2018-10519 [HIGH] CVE-2018-10519: CMS Made Simple (CMSMS) 2.2.7 contains a privilege escalation vulnerability from ordinary user to ad CMS Made Simple (CMSMS) 2.2.7 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because files in the tmp/ directory are accessible through HTTP requests. NOTE: this vulnerability exists because of an incorrect fix for CVE-2018-10084.
nvd
CVE-2010-2797P3HIGHCVSS 7.5≤ 1.6.8v1.0+37 more2010-10-08
CVE-2010-2797 [HIGH] CVE-2010-2797: Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 a Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642.
nvd
CVE-2022-23906P3HIGHCVSS 7.2v2.2.152022-02-28
CVE-2022-23906 [HIGH] CWE-434 CVE-2022-23906: CMS Made Simple v2.2.15 was discovered to contain a Remote Command Execution (RCE) vulnerability via CMS Made Simple v2.2.15 was discovered to contain a Remote Command Execution (RCE) vulnerability via the upload avatar function. This vulnerability is exploited via a crafted image file.
nvd
CVE-2018-10081P3CRITICALCVSS 9.8≤ 2.2.72018-04-13
CVE-2018-10081 [CRITICAL] CWE-640 CVE-2018-10081: CMS Made Simple (CMSMS) through 2.2.6 contains an admin password reset vulnerability because data va CMS Made Simple (CMSMS) through 2.2.6 contains an admin password reset vulnerability because data values are improperly compared, as demonstrated by a hash beginning with the "0e" substring.
nvd
CVE-2018-10084P3HIGHCVSS 8.8≤ 2.2.62018-04-13
CVE-2018-10084 [HIGH] CWE-327 CVE-2018-10084: CMS Made Simple (CMSMS) through 2.2.6 contains a privilege escalation vulnerability from ordinary us CMS Made Simple (CMSMS) through 2.2.6 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because an SHA-1 cryptographic protection mechanism can be bypassed.
nvd
CVE-2018-10083P3HIGHCVSS 7.5≤ 2.2.72018-04-13
CVE-2018-10083 [HIGH] CWE-22 CVE-2018-10083: CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin dashboard via directory traversal sequences in the val parameter within a cmd=del request, because code under modules\FilePicker does not restrict the val parameter.
nvd
CVE-2018-10086P3HIGHCVSS 7.2≤ 2.2.72018-04-13
CVE-2018-10086 [HIGH] CWE-94 CVE-2018-10086: CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary code execution vulnerability in the admi CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary code execution vulnerability in the admin dashboard because the implementation uses "eval('function testfunction'.rand()" and it is possible to bypass certain restrictions on these "testfunction" functions.
nvd
CVE-2011-4310P3HIGHCVSS 7.5fixed in 1.9.4.32019-11-26
CVE-2011-4310 [HIGH] CWE-20 CVE-2011-4310: The news module in CMSMS before 1.9.4.3 allows remote attackers to corrupt new articles. The news module in CMSMS before 1.9.4.3 allows remote attackers to corrupt new articles.
nvd
Cmsmadesimple Cms Made Simple vulnerabilities | cvebase