CVE-2025-5153

Name of the Vulnerable Software and Affected Versions CMS Made Simple version 2.2.21

Description A problematic issue has been found in the Design Manager Module of CMS Made Simple, affecting some unknown processing. The manipulation of the Description argument leads to cross-site scripting. This issue can be exploited remotely.

Recommendations For CMS Made Simple version 2.2.21, consider disabling the Design Manager Module until a patch is available to prevent cross-site scripting attacks. Restrict access to the module to minimize the risk of exploitation. Avoid using the Description argument in the affected module until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.