CVE-2019-17629

CVE-2019-17629

EPSS 0.5%

CMS Made Simple (CMSMS) 2.2.11 allows stored XSS by an admin via a crafted image filename on the "file manager > upload images" screen.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://dev.cmsmadesimple.org/bug/view/12146 https://forum.cmsmadesimple.org/viewforum.php?f=1