Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

CMS Made Simple < 1.6.3 Local File Include Vulnerability



The remote web server is running a PHP application that is affected by an information disclosure vulnerability.


The remote host is running CMS Made Simple, a web-based content manager written in PHP. The installed version of CMS Made Simple is earlier than 1.6.2. Such versions are potentially affected by an information disclosure vulnerability because they fail to properly sanitize user supplied data to the 'url' parameter of the 'modules/Printing/output.php' script.


Upgrade to CMS Made Simple 1.6.3 or later.