CPE-A1E79C73-4B45-4418-A44B-C422DA70F7BC Détail

CPE Details

CMSimple CMSimple 2.7

Vendor

cmsmadesimple

Product

cms_made_simple

Version

2.7

Created

2007-08-23
19h16 +00:00

Modifié

2008-04-01
12h41 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:cmsmadesimple:cms_made_simple:2.7:::::::*

Informations

Vendor

cmsmadesimple

Product

cms_made_simple

Version

2.7

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2017-1000453	2018-01-02 17h00 +00:00	CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution.	9.8	Critique
CVE-2017-1000454	2018-01-02 17h00 +00:00	CMS Made Simple 2.1.6, 2.2, 2.2.1 are vulnerable to Smarty Template Injection in some core components, resulting in local file read before 2.2, and local file inclusion since 2.2.1	7.8	Haute
CVE-2014-0334	2014-03-02 16h00 +00:00	Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple allow remote authenticated users to inject arbitrary web script or HTML via (1) the group parameter to admin/addgroup.php, (2) the htmlblob parameter to admin/addhtmlblob.php, the (3) title or (4) url parameter to admin/addbookmark.php, (5) the stylesheet_name parameter to admin/copystylesheet.php, (6) the template_name parameter to admin/copytemplate.php, the (7) title or (8) url parameter to admin/editbookmark.php, (9) the template parameter to admin/listtemplates.php, or (10) the css_name parameter to admin/listcss.php, a different issue than CVE-2014-2092.	3.5
CVE-2007-5056	2007-09-24 20h00 +00:00	Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote attackers to execute arbitrary code via PHP sequences in the last_module parameter.	6.8
CVE-2007-0610	2007-01-31 00h00 +00:00	Cross-site scripting (XSS) vulnerability in the mailform feature in CMSimple 2.7 fix1 allows remote attackers to inject arbitrary web script or HTML via the sender parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.	6.8
CVE-2007-0551	2007-01-29 16h00 +00:00	Multiple PHP remote file inclusion vulnerabilities in cmsimple/cms.php in CMSimple 2.7 allow remote attackers to execute arbitrary PHP code via a URL in the (1) pth[file][config] and (2) pth[file][image] parameters.	7.5

CMSimple CMSimple 2.7

CPE Details

CPE Name: cpe:2.3:a:cmsmadesimple:cms_made_simple:2.7:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:cmsmadesimple:cms_made_simple:2.7:::::::*