CVE-2019-9692
MEDIUMCMSMS <2.2.10 - Info Disclosure
Title source: llmDescription
class.showtime2_image.php in CMS Made Simple (CMSMS) before 2.2.10 does not ensure that a watermark file has a standard image file extension (GIF, JPG, JPEG, or PNG).
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotephp
https://www.exploit-db.com/exploits/46627
exploitdb
WORKING POC
VERIFIED
by Daniele Scanu · pythonwebappsphp
https://www.exploit-db.com/exploits/46546
metasploit
WORKING POC
NORMAL
by Daniele Scanu, Fabio Cogno · rubypocphp
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/cmsms_showtime2_rce.rb
References (6)
Scores
CVSS v3
6.5
EPSS
0.5929
EPSS Percentile
98.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-434
Status
published
Products (1)
cmsmadesimple/cms_made_simple
< 2.2.10
Published
Mar 11, 2019
Tracked Since
Feb 18, 2026