All 6 CVE vulnerabilities found in CMS Made Simple, with AI-generated Chinese analysis, references, and POCs.
Vendor: CMS Made Simple
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-5203 | CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal CWE-22 | 4.7 | Medium | 2026-03-31 |
| CVE-2026-4225 | CMS Made Simple User Management listusers.php cross site scripting CWE-79 | 2.4 | Low | 2026-03-16 |
| CVE-2025-5153 | CMS Made Simple Design Manager Module cross site scripting CWE-79 | 3.5 | Low | 2025-05-25 |
| CVE-2024-1529 | Cross-site Scripting in CMS Made Simple CWE-79 | 7.4 | High | 2024-03-12 |
| CVE-2024-1528 | Cross-site Scripting in CMS Made Simple CWE-79 | 7.4 | High | 2024-03-12 |
| CVE-2024-1527 | Unrestricted Upload of File with Dangerous Type in CMS Made Simple CWE-434 | 9.8 | Critical | 2024-03-12 |
All 6 known CVE vulnerabilities affecting CMS Made Simple with full Chinese analysis, references, and POCs where available.