Cross-site request forgery (CSRF) vulnerability in CMS Made Simple before 2.1.6 allows remote attackers to hijack the authentication of administrators for requests that create accounts via an. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
CSRF
PHP
Cms Made Simple
NVD
VulDB
CVSS 3.0
8.0
EPSS
0.5%