CMS Made Simple 1.1.3.1 Multiple Remote Vulnerabilities

Bugtraq ID:	25997
Class:	Unknown
CVE:
Remote:	Yes
Local:	No
Published:	Oct 10 2007 12:00AM
Updated:	Oct 11 2007 06:28PM
Credit:	Omid reported these issues.
Vulnerable:	CMS Made Simple CMS Made Simple 1.1.3.1
Not Vulnerable:	CMS Made Simple CMS Made Simple 1.1.4.1

CMS Made Simple 1.1.3.1 Multiple Remote Vulnerabilities

CMS Made Simple is prone to multiple remote vulnerabilities including:

- An arbitrary PHP code-execution vulnerability.
- Multiple unauthorized-access vulnerabilities.
- Two cross-site scripting vulnerabilities
- 13 fullpath-disclosure vulnerabilities.

An attacker can exploit these issues to compromise the affected application, execute arbitrary PHP code with the privileges of the webserver process, steal cookie-based authentication credentials, and obtain sensitive information.

These issues affect CMS Made Simple 1.1.3.1; prior versions may also be affected.

CMS Made Simple 1.1.3.1 Multiple Remote Vulnerabilities

Attackers can use a browser to exploit these issues. To exploit a cross-site scripting vulnerability, an attacker must entice an unsuspecting user to follow a malicious URI.

CMS Made Simple 1.1.3.1 Multiple Remote Vulnerabilities

Solution:
The vendor released an update to address these issues. Please see the references for more information.


CMS Made Simple CMS Made Simple 1.1.3.1

• CMS Made Simple cmsmadesimple-1.1.4.1.tar.gz
  http://dev.cmsmadesimple.org/frs/download.php/1518/cmsmadesimple-1.1.4 .1.tar.gz

CMS Made Simple 1.1.3.1 Multiple Remote Vulnerabilities

References:

• Announcing CMS Made Simple 1.1.4.1 - Critical Update (CMS Made Simple)
  
• CMS Made Simple Homepage (CMS Made Simple)