Unrated severityNVD Advisory· Published Mar 30, 2021· Updated Aug 3, 2024
CVE-2021-28935
CVE-2021-28935
Description
CMS Made Simple (CMSMS) 2.2.15 allows authenticated XSS via the /admin/addbookmark.php script through the Site Admin > My Preferences > Title field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CMS Made Simple/CMS Made Simpledescription
- Range: <= 2.2.15
Patches
Vulnerability mechanics
References
2- dev.cmsmadesimple.org/bug/view/12432mitrex_refsource_MISC
- packetstormsecurity.com/files/162287/CMS-Made-Simple-2.2.15-Cross-Site-Scripting.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.