Cmsmadesimple » Cms Made Simple : Security Vulnerabilities, CVEs, (Directory traversal) CVSS score >= 1
An issue was discovered in CMS Made Simple 2.2.8. It is possible to achieve unauthenticated path traversal in the CGExtensions module (in the file action.setdefaulttemplate.php) with the m1_filename parameter; and through the action.showmessage.php file, it is possible to read arbitrary file content (by using that path traversal with m1_prefname set to cg_errormsg and m1_resettodefault=1).
Max CVSS
7.5
EPSS Score
0.15%
Published
2021-09-17
Updated
2021-09-28
CMS Made Simple (CMSMS) through 2.2.7 contains an arbitrary file deletion vulnerability in the admin dashboard via directory traversal sequences in the val parameter within a cmd=del request, because code under modules\FilePicker does not restrict the val parameter.
Max CVSS
7.5
EPSS Score
0.16%
Published
2018-04-13
Updated
2018-04-13
In CMS Made Simple 2.2.7, a Directory Traversal issue makes it possible to determine the existence of files and directories outside the web-site installation directory, and determine whether a file has contents matching a specified checksum. The attack uses an admin/checksum.php?__c= request.
Max CVSS
5.3
EPSS Score
0.10%
Published
2018-04-23
Updated
2018-05-25
Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) before 1.11.2.1 allows remote authenticated administrators to delete arbitrary files via a .. (dot dot) in the deld parameter. NOTE: this can be leveraged using CSRF (CVE-2012-5450) to allow remote attackers to delete arbitrary files.
Max CVSS
3.5
EPSS Score
0.38%
Published
2012-12-03
Updated
2017-08-29
Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the default_cms_lang parameter to an admin script, as demonstrated by admin/addbookmark.php, a different vulnerability than CVE-2008-5642.
Max CVSS
7.5
EPSS Score
0.45%
Published
2010-10-08
Updated
2010-10-11
Directory traversal vulnerability in admin/login.php in CMS Made Simple 1.4.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a cms_language cookie.
Max CVSS
5.0
EPSS Score
2.40%
Published
2008-12-17
Updated
2017-09-29
6 vulnerabilities found