Calguy1000

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple version 2.2.8 **Description** An issue was discovered in the CGExtensions module, allowing unauthenticated path traversal with the `m1 filename` parameter in the file action.setdefaulttemplate.php. Additionally, through the action.showmessage.php file, it is possible to read arbitrary file content by using that path traversal with `m1 prefname` set to `cg errormsg` and `m1 resettodefault` set to 1. **Recommendations** For CMS Made Simple version 2.2.8, consider disabling the CGExtensions module until a patch is available. As a temporary workaround, restrict access to the action.setdefaulttemplate.php and action.showmessage.php files to minimize the risk of exploitation. Avoid using the `m1 filename` parameter in the affected module and the `m1 prefname` and `m1 resettodefault` parameters in the action.showmessage.php file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple versions prior to 2.2.10 **Description** The issue allows an authenticated user to achieve SQL Injection in the class.showtime2 data.php file via several functions, including updateshow, inputshow, Getshowinfo, Getpictureinfo, AdjustNameSeq, Updatepicture, and Deletepicture, by manipulating parameters such as `show id`, `picture id`, and `shownumber`. **Recommendations** For CMS Made Simple versions prior to 2.2.10, update to version 2.2.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple versions prior to 2.2.5 **Description** The issue is related to improper caching of login information in sessions. **Recommendations** For versions prior to 2.2.5, update to version 2.2.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple versions prior to 2.2.5 **Description** The issue is related to improper caching of login information in cookies. **Recommendations** For versions prior to 2.2.5, update to version 2.2.5 or later to resolve the issue.