CVE-2023-43872 - File Upload Vulnerability in CMS Made Simple 2.2.18 Allows Hidden XSS in PDF Files
CMS Made Simple (CMSMS) is a pretty popular web content management system, used for building websites quickly and easily. But sometimes, simple tools come with
CVE-2023-43339 - How Local Attackers Can Exploit XSS in CMS Made Simple 2.2.18 via Database Configuration
In fall 2023, CVE-2023-43339 revealed a dangerous flaw in _CMS Made Simple_ (CMSMS) version 2.2.18. This vulnerability allows a local attacker to run