CVE-2021-43154
MEDIUMCMS Made Simple 2.2.15 - XSS
Title source: llmDescription
Cross Site Scripting (XSS) vulnerability exists in CMS Made Simple 2.2.15 via the Name field in an Add Category action in moduleinterface.php.
Scores
CVSS v3
6.1
EPSS
0.0033
EPSS Percentile
55.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Classification
CWE
CWE-79
Status
published
Affected Products (1)
cmsmadesimple/cms_made_simple
Timeline
Published
Apr 13, 2022
Tracked Since
Feb 18, 2026