Vulnerabilities > Cmsmadesimple > CMS Made Simple > 1.1.4

DATE CVE VULNERABILITY TITLE RISK
2010-10-08 CVE-2010-2797 Path Traversal vulnerability in Cmsmadesimple CMS Made Simple
Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
cmsmadesimple CWE-22
7.5
7.5
2010-05-12 CVE-2010-1482 Cross-Site Scripting vulnerability in Cmsmadesimple CMS Made Simple
Cross-site scripting (XSS) vulnerability in admin/editprefs.php in the backend in CMS Made Simple (CMSMS) before 1.7.1 might allow remote attackers to inject arbitrary web script or HTML via the date_format_string parameter. 		4.3
4.3