Cmsmadesimple : Security Vulnerabilities, CVEs, Published In 2016
CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.
Max CVSS
4.7
EPSS Score
95.47%
Published
2016-05-26
Updated
2018-10-09
1 vulnerabilities found