CVE-2023-43339 Information

Description

Cross-Site Scripting (XSS) vulnerability in cmsmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted payload injected into the Database Name DataBase User or Database Port components.

Reference

https://github.com/sromanhu/Cmsmadesimple-CMS-Stored-XSS/blob/main/README.md http://www.cmsmadesimple.org/ https://github.com/sromanhu/CVE-2023-43339-CMSmadesimple-Reflected-XSS—Installation/blob/main/README.md