CVE-2019-10017

Summary: 
CMS Made Simple 2.2.10 has XSS via the moduleinterface.php Name field, which is reachable via an "Add a new Profile" action to the File Picker.
Published: 
Sunday, March 24, 2019 - 18:29
cvss: