CVE-2024-27623 Information

Description

CMS Made Simple version 2.2.19 is vulnerable to Server-Side Template Injection (SSTI). The vulnerability exists within the Design Manager particularly when editing the Breadcrumbs.

Reference

https://github.com/capture0x/CMSMadeSimple2