| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 3.3 | $0-$5k | 0.00 |
Summary
A vulnerability was found in CMS Made Simple. It has been classified as problematic. The impacted element is an unknown function. The manipulation of the argument css_name leads to cross site scripting. This vulnerability is documented as CVE-2014-0334. The attack can be initiated remotely. Additionally, an exploit exists.
Details
A vulnerability was found in CMS Made Simple (Content Management System) (unknown version). It has been rated as problematic. This issue affects an unknown code block. The manipulation of the argument css_name with an unknown input leads to a cross site scripting vulnerability. Using CWE to declare the problem leads to CWE-79. The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. Impacted is integrity. The summary by CVE is:
Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple allow remote authenticated users to inject arbitrary web script or HTML via (1) the group parameter to admin/addgroup.php, (2) the htmlblob parameter to admin/addhtmlblob.php, the (3) title or (4) url parameter to admin/addbookmark.php, (5) the stylesheet_name parameter to admin/copystylesheet.php, (6) the template_name parameter to admin/copytemplate.php, the (7) title or (8) url parameter to admin/editbookmark.php, (9) the template parameter to admin/listtemplates.php, or (10) the css_name parameter to admin/listcss.php, a different issue than CVE-2014-2092.
The weakness was released 03/02/2014 by Pedro Ribeiro with Agile Information Security as confirmed advisory (CERT.org). It is possible to read the advisory at kb.cert.org. The identification of this vulnerability is CVE-2014-0334 since 12/05/2013. The attack may be initiated remotely. The requirement for exploitation is a simple authentication. It demands that the victim is doing some kind of user interaction. Technical details as well as a public exploit are known. The attack technique deployed by this issue is T1059.007 according to MITRE ATT&CK.
A public exploit has been developed by Pedro Ribeiro and been published 8 months after the advisory. The exploit is available at exploit-db.com. It is declared as proof-of-concept. The commercial vulnerability scanner Qualys is able to test this issue with plugin 11570 (CMS Made Simple Multiple Cross-Site Scripting and SQL Injection Vulnerabilities).
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
The vulnerability is also documented in the databases at X-Force (91640), Exploit-DB (43889), SecurityFocus (BID 65898†) and Vulnerability Center (SBV-56686†). Entries connected to this vulnerability are available at VDB-66538 and VDB-66496. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Name
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 3.5VulDB Meta Temp Score: 3.3
VulDB Base Score: 3.5
VulDB Temp Score: 3.3
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Cross site scriptingCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
Author: Pedro Ribeiro
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
OpenVAS ID: 103332
OpenVAS Name: CMS Made Simple Multiple XSS Vulnerabilities Mar14
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Exploit Delay Time: 🔍
Timeline
02/27/2013 🔍12/05/2013 🔍
02/28/2014 🔍
03/02/2014 🔍
03/02/2014 🔍
10/12/2014 🔍
10/12/2014 🔍
03/24/2015 🔍
02/20/2016 🔍
04/12/2025 🔍
Sources
Advisory: kb.cert.orgResearcher: Pedro Ribeiro
Organization: Agile Information Security
Status: Confirmed
CVE: CVE-2014-0334 (🔍)
GCVE (CVE): GCVE-0-2014-0334
GCVE (VulDB): GCVE-100-66491
CERT: 🔍
X-Force: 91640
SecurityFocus: 65898 - CMS Made Simple CVE-2014-0334 Multiple Cross Site Scripting and HTML Injection Vulnerabilities
Vulnerability Center: 56686 - CMS Made Simple <=1.11.9 Remote Multiple XSS Vulnerabilities, Low
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 03/24/2015 15:54Updated: 04/12/2025 22:30
Changes: 03/24/2015 15:54 (66), 04/12/2019 08:44 (8), 08/18/2024 20:52 (16), 04/12/2025 22:30 (1)
Complete: 🔍
Cache ID: 216:9BF:103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.