Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-23240

EPSS 0.30% · P54
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-23240

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross Site Scripting (XSS) vulnerablity in CMS Made Simple 2.2.14 via the Logic field in the Content Manager feature.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
CMS Made Simple 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
CMS Made Simple(CMSMS)是CMSMS(Cmsms)团队的一套开源的内容管理系统(CMS)。该系统支持基于角色的权限管理系统、基于向导的安装与更新机制、智能缓存机制等。 CMS Made Simple 2.2.14版本存在跨站脚本漏洞,攻击者可以通过内容管理器功能中的逻辑字段导致跨站脚本漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2020-23240

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-23240

登录查看更多情报信息。

Same Patch Batch · n/a · 2021-07-26 · 37 CVEs total

CVE-2020-17952Twothink 安全漏洞
CVE-2020-18169TechSmith SnagIT 安全漏洞
CVE-2020-18170Abloy Key Manager 安全漏洞
CVE-2020-18171TechSmith Snagit 安全漏洞
CVE-2020-18172Trezor Bridge 代码注入漏洞
CVE-2020-18173AgileBits 1Password 代码问题漏洞
CVE-2020-18174AutoHotkey 安全漏洞
CVE-2020-23234LavaLite 跨站脚本漏洞
CVE-2020-23238Evolution CMS 跨站脚本漏洞
CVE-2021-36563CheckMK management web console 跨站脚本漏洞
CVE-2020-23239Textpattern CMS跨站脚本漏洞
CVE-2020-23241CMS Made Simple 跨站脚本漏洞
CVE-2020-23242NavigateCMS和NavigateCMS 跨站脚本漏洞
CVE-2020-23243NavigateCMS 跨站脚本漏洞
CVE-2021-37555TX9 Automatic Food Dispenser 授权问题漏洞
CVE-2021-37576Linux kernel 缓冲区错误漏洞
CVE-2020-18428tinyexr commit 输入验证错误漏洞
CVE-2020-18430tinyexr 输入验证错误漏洞
CVE-2021-25804VideoLAN VLC media player 代码问题漏洞
CVE-2020-126813xlogic 3xLogic Infinias eIDC32 信任管理问题漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2020-23240

No comments yet

Leave a comment