CVE-2018-5964

CVE: CVE-2018-5964
Published: 2018-01-25T16:29Z
Vendor: cmsmadesimple
Products: cms_made_simple
Versions: 2.2.5,
Description Language: en
Description: CMS Made Simple (CMSMS) 2.2.5 has XSS in admin/moduleinterface.php via the m1_messages parameter.
References:
http://packetstormsecurity.com/files/146034/CMS-Made-Simple-2.2.5-moduleinterface.php-title-Cross-Site-Scripting.html
http://seclists.org/fulldisclosure/2018/Jan/82
CMS Made Simple 2.2.5 Reflected Cross Site Scripting