Jenyraval

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple versions prior to 2.2.15 **Description** The issue allows for XSS via the `m1 mod` parameter in a ModuleManager local uninstall action to "admin/moduleinterface.php". **Recommendations** For versions prior to 2.2.15, update to version 2.2.15 or later to resolve the issue.