Vulnerability Details CVE-2023-43339
Cross-Site Scripting (XSS) vulnerability in cmsmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted payload injected into the Database Name, DataBase User or Database Port components.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.8%
CVSS Severity
CVSS v3 Score 6.1
References
- http://www.cmsmadesimple.org/
- https://github.com/sromanhu/CVE-2023-43339-CMSmadesimple-Reflected-XSS---Installation/blob/main/README.md
- https://github.com/sromanhu/Cmsmadesimple-CMS-Stored-XSS/blob/main/README.md
- http://www.cmsmadesimple.org/
- https://github.com/sromanhu/CVE-2023-43339-CMSmadesimple-Reflected-XSS---Installation/blob/main/README.md
- https://github.com/sromanhu/Cmsmadesimple-CMS-Stored-XSS/blob/main/README.md
Products affected by CVE-2023-43339
-
cpe:2.3:a:cmsmadesimple:cms_made_simple:2.2.18