CVE-2007-5443

Cmsmadesimple Cms Made Simple - XSS

Title source: rule

Description

Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.1.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) the anchor tag and (2) listtags.

References (5)

[Various Sources] http://blog.cmsmadesimple.org/2007/10/07/announcing-cms-made-simple-1141/

[Third Party Advisory, VDB Entry] http://osvdb.org/42471

[Third Party Advisory, VDB Entry] http://osvdb.org/42472

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/481984/100/0/threaded

[Third Party Advisory] http://securityreason.com/securityalert/3223

Scores

EPSS 0.0035

EPSS Percentile 57.2%

Classification

CWE

CWE-79

Status draft

Affected Products (1)

cmsmadesimple/cms_made_simple

Timeline

Published Oct 14, 2007

Tracked Since Feb 18, 2026