CVE-2019-17226

CMS Made Simple (CMSMS) 2.2.11 allows XSS via the Site Admin > Module Manager > Search Term field.
References
Link Resource
http://dev.cmsmadesimple.org/bug/view/12148 Exploit Issue Tracking Vendor Advisory
http://dev.cmsmadesimple.org/bug/view/12148 Exploit Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:cmsmadesimple:cms_made_simple:2.2.11:*:*:*:*:*:*:*

History

21 Nov 2024, 04:31

Type Values Removed Values Added
References () http://dev.cmsmadesimple.org/bug/view/12148 - Exploit, Issue Tracking, Vendor Advisory () http://dev.cmsmadesimple.org/bug/view/12148 - Exploit, Issue Tracking, Vendor Advisory

Information

Published : 2019-10-06 18:15

Updated : 2024-11-21 04:31


NVD link : CVE-2019-17226

Mitre link : CVE-2019-17226

CVE.ORG link : CVE-2019-17226


JSON object : View

Products Affected

cmsmadesimple

  • cms_made_simple
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')