Unrated severityNVD Advisory· Published Jul 6, 2023· Updated Nov 19, 2024
CVE-2023-36970
CVE-2023-36970
Description
A Cross-site scripting (XSS) vulnerability in CMS Made Simple v2.2.17 allows remote attackers to inject arbitrary web script or HTML via the File Upload function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CMS Made Simple/CMS Made Simpledescription
- Range: =2.2.17
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.