Description
CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Mickaël Walter · textwebappsphp
https://www.exploit-db.com/exploits/39760
References (6)
Core 6
Core References
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/136897/CMS-Made-Simple-Cache-Poisoning.html
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2016/May/15
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/538272/100/0/threaded
Vendor Advisory x_refsource_confirm
http://www.cmsmadesimple.org/2016/03/Announcing-CMSMS-1-12-2-kolonia/
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/39760/
Various Sources x_refsource_confirm
http://www.cmsmadesimple.org/2016/04/Announcing-CMSMS-2-1-3-Black-Point/
Scores
CVSS v3
4.7
EPSS
0.0609
EPSS Percentile
90.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (50)
cmsmadesimple/cms_made_simple
1.0
cmsmadesimple/cms_made_simple
1.0.1
cmsmadesimple/cms_made_simple
1.0.2
cmsmadesimple/cms_made_simple
1.0.3
cmsmadesimple/cms_made_simple
1.0.4
cmsmadesimple/cms_made_simple
1.0.5
cmsmadesimple/cms_made_simple
1.0.6
cmsmadesimple/cms_made_simple
1.0.7
cmsmadesimple/cms_made_simple
1.0.8
cmsmadesimple/cms_made_simple
1.1
... and 40 more
Published
May 26, 2016
Tracked Since
Feb 18, 2026