EIP-2026-106026
PRE-CVECmsMadeSimple v2.2.17 - session hijacking via Server-Side Template Injection (SSTI)
Title source: legacyDescription
CmsMadeSimple v2.2.17 - session hijacking via Server-Side Template Injection (SSTI)
Exploits (1)
exploitdb
WORKING POC
by Mirabbas Ağalarov · textwebappsphp
https://www.exploit-db.com/exploits/51599
Details
Status
pre_cve
Tracked Since
Feb 18, 2026