CVE-2024-27623

Published March 5th, 2024

View on NVD ↗

CVSS v3

5.9

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

CMS Made Simple version 2.2.19 is vulnerable to Server-Side Template Injection (SSTI). The vulnerability exists within the Design Manager, particularly when editing the Breadcrumbs.

capture0x/CMSMadeSimple2

CMS Made Simple Version: 2.2.19 - SSTI

GitHub