This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


CPE Namecpe:/a:cmsmadesimple:cms_made_simple:0.9
VendorCmsmadesimpleFirst view 2007-05-02
ProductCms Made SimpleLast view2014-03-05
CPE Productcpe:/a:cmsmadesimple:cms_made_simple

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
62014-03-05CVE-2014-2245NetworkMediumRequires ...
4.32013-10-11CVE-2013-4167NetworkMediumNone Requ...
3.52012-12-03CVE-2012-6064NetworkMediumRequires ...
6.82012-12-03CVE-2012-5450NetworkMediumNone Requ...
4.32012-04-11CVE-2012-1992NetworkMediumNone Requ...
Hide | Show 8 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
102011-06-08CVE-2010-4663NetworkLowNone Requ...
6.82010-10-08CVE-2010-3884NetworkMediumNone Requ...
6.82010-10-08CVE-2010-3883NetworkMediumNone Requ...
4.32010-10-08CVE-2010-3882NetworkMediumNone Requ...
7.52010-10-08CVE-2010-2797NetworkLowNone Requ...
4.32010-05-12CVE-2010-1482NetworkMediumNone Requ...
7.52008-01-04CVE-2007-6656NetworkLowNone Requ...
7.52007-05-02CVE-2007-2473NetworkLowNone Requ...

CWE : Common Weakness Enumeration

36% (4)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
27% (3)CWE-352Cross-Site Request Forgery (CSRF)
18% (2)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
18% (2)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Open Source Vulnerability Database (OSVDB)

73150News Module for CMS Made Simple Unspecified Issue
68617CMS Made Simple lib/translation.functions.php default_cms_lang Parameter Trav...
65369CMS Made Simple Add Global Content Module URI XSS
65368CMS Made Simple Edit Global Content Module URI XSS
65367CMS Made Simple Add Article Module URI XSS
Hide | Show 9 More...
65366CMS Made Simple Add Category Module URI XSS
65365CMS Made Simple Add Field Definition Module URI XSS
65364CMS Made Simple Add Shortcut Module URI XSS
65363CMS Made Simple Changes Group Permission Module CSRF
65362CMS Made Simple Add Pages Module URI XSS
65081CMS Made Simple Admin Password Manipulation CSRF
64606CMS Made Simple admin/editprefs.php date_format_string Parameter XSS
39788CMS Made Simple modules/TinyMCE/content_css.php templateid Parameter SQL Inje...
35744CMS Made Simple stylesheet.php templateid Parameter SQL Injection

Milw0rm Exploits

2007-12-30CMS Made Simple <= 1.2.2 (TinyMCE module) SQL Injection Vuln

OpenVAS Exploits

2010-07-14Name : CMS Made Simple 'default_cms_lang' Parameter Local File Include Vulnerability
File : nvt/gb_cms_made_simple_41565.nasl
2010-05-10Name : CMS Made Simple 'admin/editprefs.php' Cross-Site Scripting Vulnerability
File : nvt/gb_cms_made_simple_39997.nasl

Nessus® Vulnerability Scanner

2008-01-02Name : The remote web server contains a PHP script that is prone to a SQL injection ...
File : cmsmadesimple_templateid_sql_injection.nasl - Type : ACT_ATTACK