Unspecified vulnerability in the News module in CMS Made Simple (CMSMS) before 1.9.1 has unknown impact and attack vectors.
Max CVSS
10.0
EPSS Score
0.19%
Published
2011-06-08
Updated
2012-04-27
CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to execute PHP code via the cntnt01fbrp_forma_form_template parameter in admin_store_form.
Max CVSS
9.8
EPSS Score
0.94%
Published
2017-02-21
Updated
2017-02-23
In CMS Made Simple 2.1.6, there is Server-Side Template Injection via the cntnt01detailtemplate parameter.
Max CVSS
9.8
EPSS Score
3.77%
Published
2017-11-10
Updated
2020-11-10
CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login information in sessions.
Max CVSS
9.8
EPSS Score
0.18%
Published
2017-12-18
Updated
2018-01-04
CMS Made Simple (CMSMS) before 2.2.5 does not properly cache login information in cookies.
Max CVSS
9.8
EPSS Score
0.18%
Published
2017-12-18
Updated
2018-01-04
CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution.
Max CVSS
9.8
EPSS Score
0.24%
Published
2018-01-02
Updated
2018-01-16
CMS Made Simple (CMSMS) through 2.2.6 contains an admin password reset vulnerability because data values are improperly compared, as demonstrated by a hash beginning with the "0e" substring.
Max CVSS
9.8
EPSS Score
0.47%
Published
2018-04-13
Updated
2018-04-17
CMS Made Simple (CMSMS) through 2.2.6 allows PHP object injection because of an unserialize call in the _get_data function of \lib\classes\internal\class.LoginOperations.php. By sending a crafted cookie, a remote attacker can upload and execute code, or delete files.
Max CVSS
9.8
EPSS Score
0.30%
Published
2018-04-13
Updated
2020-08-24
Unrestricted file upload vulnerability in CMS Made Simple, affecting version 2.2.14. This vulnerability allows an authenticated user to bypass the security measures of the upload functionality and potentially create a remote execution of commands via webshell.
Max CVSS
9.8
EPSS Score
0.04%
Published
2024-03-12
Updated
2024-03-12
CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/siteprefs.php.
Max CVSS
8.8
EPSS Score
0.09%
Published
2018-04-11
Updated
2018-04-13
CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/moduleinterface.php.
Max CVSS
8.8
EPSS Score
0.09%
Published
2018-04-11
Updated
2018-04-13
CMS Made Simple (CMSMS) through 2.2.6 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because an SHA-1 cryptographic protection mechanism can be bypassed.
Max CVSS
8.8
EPSS Score
0.09%
Published
2018-04-13
Updated
2019-10-03
CMS Made Simple (CMSMS) 2.2.7 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, because files in the tmp/ directory are accessible through HTTP requests. NOTE: this vulnerability exists because of an incorrect fix for CVE-2018-10084.
Max CVSS
8.8
EPSS Score
0.08%
Published
2018-04-27
Updated
2019-10-03
CMS Made Simple version versions 2.2.5 contains a Cross ite Request Forgery (CSRF) vulnerability in Admin profile page that can result in Details can be found here http://dev.cmsmadesimple.org/bug/view/11715. This attack appear to be exploitable via A specially crafted web page. This vulnerability appears to have been fixed in 2.2.6.
Max CVSS
8.8
EPSS Score
0.11%
Published
2018-03-13
Updated
2018-04-10
cmsmadesimple version 2.2.7 contains a Incorrect Access Control vulnerability in the function of send_recovery_email in the line "$url = $config['admin_url'] . '/login.php?recoverme=' . $code;" that can result in Administrator Password Reset Poisoning, specifically a reset URL pointing at an attacker controlled server can be created by using a host header attack.
Max CVSS
8.8
EPSS Score
0.31%
Published
2018-04-18
Updated
2019-10-03

CVE-2019-9055

Public exploit
An issue was discovered in CMS Made Simple 2.2.8. In the module DesignManager (in the files action.admin_bulk_css.php and action.admin_bulk_template.php), with an unprivileged user with Designer permission, it is possible reach an unserialize call with a crafted value in the m1_allparms parameter, and achieve object injection.
Max CVSS
8.8
EPSS Score
1.75%
Published
2019-03-26
Updated
2020-08-24
An issue was discovered in CMS Made Simple 2.2.8. In the module FrontEndUsers (in the file class.FrontEndUsersManipulate.php or class.FrontEndUsersManipulator.php), it is possible to reach an unserialize call with an untrusted __FEU__ cookie, and achieve authenticated object injection.
Max CVSS
8.8
EPSS Score
0.10%
Published
2019-04-11
Updated
2020-08-24
An issue was discovered in CMS Made Simple 2.2.8. In the module FilePicker, it is possible to reach an unserialize call with an untrusted parameter, and achieve authenticated object injection.
Max CVSS
8.8
EPSS Score
0.10%
Published
2019-03-26
Updated
2022-12-02
An issue was discovered in CMS Made Simple 2.2.8. In the module ModuleManager (in the file action.installmodule.php), it is possible to reach an unserialize call with untrusted input and achieve authenticated object injection by using the "install module" feature.
Max CVSS
8.8
EPSS Score
0.10%
Published
2019-03-26
Updated
2022-12-02
In CMS Made Simple (CMSMS) before 2.2.10, an authenticated user can achieve SQL Injection in class.showtime2_data.php via the functions _updateshow (parameter show_id), _inputshow (parameter show_id), _Getshowinfo (parameter show_id), _Getpictureinfo (parameter picture_id), _AdjustNameSeq (parameter shownumber), _Updatepicture (parameter picture_id), and _Deletepicture (parameter picture_id).
Max CVSS
8.8
EPSS Score
0.08%
Published
2019-03-11
Updated
2019-03-12
SQL Injection vulnerability in CMS Made Simple through 2.2.15 allows remote attackers to execute arbitrary commands via the m1_sortby parameter to modules/News/function.admin_articlestab.php.
Max CVSS
8.8
EPSS Score
0.05%
Published
2023-05-08
Updated
2023-05-15
CMS Made Simple <=2.2.15 is affected by SQL injection in modules/News/function.admin_articlestab.php. The $sortby variable is concatenated with $query1, but it is possible to inject arbitrary SQL language without using the '.
Max CVSS
8.8
EPSS Score
0.33%
Published
2022-06-09
Updated
2023-02-06
CMS Made Simple v2.2.17 is vulnerable to Remote Command Execution via the File Upload Function.
Max CVSS
8.8
EPSS Score
0.06%
Published
2023-07-06
Updated
2023-07-12
Remote code execution vulnerability in /cmsms-2.1.6-install.php/index.php in CMS Made Simple version 2.1.6 allows remote attackers to inject arbitrary PHP code via the "timezone" parameter in step 4 of a fresh installation procedure.
Max CVSS
8.5
EPSS Score
5.59%
Published
2018-02-26
Updated
2018-03-22
In CMS Made Simple (CMSMS) through 2.2.7, the "file delete" operation in the admin dashboard contains an arbitrary file deletion vulnerability that can cause DoS, exploitable by an admin user, because the attacker can remove all lib/ files in all directories.
Max CVSS
8.5
EPSS Score
0.06%
Published
2018-04-27
Updated
2019-10-03
155 vulnerabilities found
1 2 3 4 5 6 7
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!