Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / cmsmadesimple

cmsmadesimple

158 tracked vulnerabilities.

CVE-2021-40961 HIGH

CMS Made Simple <=2.2.15 - SQL Injection

CVE-2021-43154 MEDIUM

CMS Made Simple 2.2.15 - Authenticated Stored Cross-Site Scripting via Add Category Name Field

CVE-2021-28935 MEDIUM

CMS Made Simple 2.2.15 - Authenticated Cross-Site Scripting via Title Field

CVE-2020-37238 MEDIUM

CMS Made Simple 2.2.15 Stored XSS via SVG File Upload

CVE-2020-23481 MEDIUM

CMS Made Simple 2.2.14 - Stored Cross-Site Scripting via Field Definition Text Field

CVE-2020-22732 MEDIUM

CMS Made Simple 2.2.14 - Stored Cross-Site Scripting via File Picker

CVE-2020-23241 MEDIUM

CMS Made Simple 2.2.14 - Cross-Site Scripting via News Article Feature

CVE-2020-23240 MEDIUM

CMS Made Simple 2.2.14 - Stored Cross-Site Scripting via Content Manager Logic Field

CVE-2020-36416 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Design Creation Parameter

CVE-2020-36415 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Stylesheet Creation

CVE-2020-36414 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Add Article URL or Extra Fields

CVE-2020-36413 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Maintenance Mode IP Exclusion Parameter

CVE-2020-36412 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Admin Search Text Field

CVE-2020-36411 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Content Editing Settings Parameters

CVE-2020-36410 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via News Submission Email Parameter

CVE-2020-36409 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Add Category Parameter

CVE-2020-36408 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting via Add Shortcut Parameter

CVE-2020-27377 MEDIUM

CMS Made Simple 2.2.14 - Stored Cross-Site Scripting in Administrator Panel Setting News Module

CVE-2020-20138 MEDIUM

CMS Made Simple 2.2.4 - Cross-Site Scripting in Showtime2 Slideshow Module

CVE-2020-24860 MEDIUM

CMS Made Simple 2.2.14 - Authenticated Stored Cross-Site Scripting in Content Manager

CVE-2020-22842 MEDIUM

CMS Made Simple < 2.2.15 - Cross-Site Scripting via m1_mod Parameter

CVE-2020-17462 HIGH

CMS Made Simple <2.2.14 - Auth Bypass

CVE-2020-14926 MEDIUM

CMS Made Simple 2.2.14 - Cross-Site Scripting via Search Term in Module Manager

CVE-2020-13660 MEDIUM

CMS Made Simple < 2.2.14 - Stored Cross-Site Scripting via File Picker Profile Name

CVE-2020-10682 HIGH

CMS Made Simple 2.2.13 - Remote Code Execution via Filemanager .php.jpegd Upload

Previous Page 2 of 7 Next

Products

cms_made_simple 154 form_builder 3 CMS Made Simple 1 bable\ 1 cmsmadesimple 1 file_manager 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy