Unrated severityNVD Advisory· Published Oct 11, 2013· Updated Jun 16, 2026
CVE-2013-4167
CVE-2013-4167
Description
Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:cmsmadesimple:cms_made_simple:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:cmsmadesimple:cms_made_simple:*:*:*:*:*:*:*:*range: <=1.11.6
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.1:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.3:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.4:*:*:*:*:*:*:*
- cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.5:*:*:*:*:*:*:*
- (no CPE)range: <1.11.7
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.