Vulnerabilities > Cmsmadesimple > CMS Made Simple > 1.11.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-05-26 | CVE-2016-2784 | Cross-site Scripting vulnerability in Cmsmadesimple CMS Made Simple CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request. | 4.7 |