Vulnerabilities

CVE-2016-2784

by Fred · 26/05/2016

CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2, when Smarty Cache is activated, allow remote attackers to conduct cache poisoning attacks, modify links, and conduct cross-site scripting (XSS) attacks via a crafted HTTP Host header in a request.

Date published : 2016-05-26

http://www.securityfocus.com/archive/1/538272/100/0/threaded

http://www.cmsmadesimple.org/2016/03/Announcing-CMSMS-1-12-2-kolonia/

Similar

Tags: Cybersecurity Alert