Download
| Alert*
CVE-2018-19508
CMSimple 4.7.5 has XSS via an admin's upload of an SVG file at a ?userfiles&subdir=userfiles/images/flags/ URI. CVE-2018-19507 CMSimple 4.7.5 has XSS via an admin's use of a ?file=config&action=array URI. |