HomePentest-Tools.com Logo

CMS Made Simple <= 2.2.16 File Upload Vulnerability CVE-2021-28998

Severity
CVSSv3 Score
7.2
Vulnerability description

CMS Made Simple is prone to a file upload vulnerability.

Risk description

A file upload vulnerability in CMS Made Simple allows remote authenticated attackers to gain a webshell via a crafted phar file.

Recommendation

No known solution is available as of 16th May, 2023. Information regarding this issue will be updated once solution details are available.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 8, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available