Security Advisory
CVE-2017-1000453
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution.