CVE-2020-22732: XSS
First published: Thu Aug 05 2021(Updated: )
CMS Made Simple (CMSMS) 2.2.14 allows stored XSS via the Extensions > Fie Picker..
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cmsmadesimple Cms Made Simple | =2.2.14 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of CMS Made Simple (CMSMS) 2.2.14?
The vulnerability ID is CVE-2020-22732.
What is the severity level of CVE-2020-22732?
The severity level of CVE-2020-22732 is medium.
How does CVE-2020-22732 allow stored XSS?
CVE-2020-22732 allows stored XSS via the Extensions > File Picker.
Which version of CMS Made Simple (CMSMS) is affected by CVE-2020-22732?
CMS Made Simple (CMSMS) version 2.2.14 is affected by CVE-2020-22732.
Is there a fix available for CVE-2020-22732?
It is recommended to update CMS Made Simple (CMSMS) to a version that is not affected by CVE-2020-22732.
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/type
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/cmsmadesimple
- canonical/cmsmadesimple cms made simple
- version/cmsmadesimple cms made simple/2.2.14