This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:cmsmadesimple:cms_made_simple:0.11.1
Detail
VendorCmsmadesimpleFirst view 2010-05-12
ProductCms Made SimpleLast view 2014-03-05
Version0.11.1TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:cmsmadesimple:cms_made_simple

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6 2014-03-05 CVE-2014-2245 Network Medium Requires ...
3.5 2012-12-03 CVE-2012-6064 Network Medium Requires ...
6.8 2012-12-03 CVE-2012-5450 Network Medium None Requ...
4.3 2012-04-11 CVE-2012-1992 Network Medium None Requ...
10 2011-06-08 CVE-2010-4663 Network Low None Requ...
Hide | Show 4 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
6.8 2010-10-08 CVE-2010-3884 Network Medium None Requ...
6.8 2010-10-08 CVE-2010-3883 Network Medium None Requ...
4.3 2010-10-08 CVE-2010-3882 Network Medium None Requ...
4.3 2010-05-12 CVE-2010-1482 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
37% (3)CWE-352Cross-Site Request Forgery (CSRF)
37% (3)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
12% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
12% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Open Source Vulnerability Database (OSVDB)

idDescription
73150News Module for CMS Made Simple Unspecified Issue
65369CMS Made Simple Add Global Content Module URI XSS
65368CMS Made Simple Edit Global Content Module URI XSS
65367CMS Made Simple Add Article Module URI XSS
65366CMS Made Simple Add Category Module URI XSS
Hide | Show 6 More...
idDescription
65365CMS Made Simple Add Field Definition Module URI XSS
65364CMS Made Simple Add Shortcut Module URI XSS
65363CMS Made Simple Changes Group Permission Module CSRF
65362CMS Made Simple Add Pages Module URI XSS
65081CMS Made Simple Admin Password Manipulation CSRF
64606CMS Made Simple admin/editprefs.php date_format_string Parameter XSS

OpenVAS Exploits

idDescription
2010-05-10Name : CMS Made Simple 'admin/editprefs.php' Cross-Site Scripting Vulnerability
File : nvt/gb_cms_made_simple_39997.nasl