CVE

CVE-2023-36970

CVE-2023-36970

A Cross-site scripting (XSS) vulnerability in CMS Made Simple v2.2.17 allows remote attackers to inject arbitrary web script or HTML via the File Upload function.

Source: CVE-2023-36970

Exit mobile version