Vulnerabilities > Cmsmadesimple > CMS Made Simple > 1.1.2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-10-08 | CVE-2010-2797 | Path Traversal vulnerability in Cmsmadesimple CMS Made Simple Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a .. | 7.5 |
2010-05-12 | CVE-2010-1482 | Cross-Site Scripting vulnerability in Cmsmadesimple CMS Made Simple Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the date_format_string parameter. | 4.3 |