Medium severity4.9NVD Advisory· Published Jul 18, 2017· Updated May 13, 2026
CVE-2017-11404
CVE-2017-11404
Description
In CMS Made Simple (CMSMS) 2.2.2, remote authenticated administrators can upload a .php file via a FileManager action to admin/moduleinterface.php.
Affected products
1- cpe:2.3:a:cmsmadesimple:cms_made_simple:2.2.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.yuesec.com/img/cccccve/CMSMadeSimple/upl0advul123/images/upload_vulnerability_yuesec.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.