Vulnerability CVE-2023-43360
Published: 2023-10-25

Description:
Cross Site Scripting vulnerability in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted script to the Top Directory parameter in the File Picker Menu component.

 References:
https://github.com/sromanhu/CMSmadesimple-Stored-XSS---File-Picker-extension
https://github.com/sromanhu/CVE-2023-43360-CMSmadesimple-Stored-XSS---File-Picker-extension
Copyright 2026, cxsecurity.com

 

Back to Top