{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T19:46:22.290","vulnerabilities":[{"cve":{"id":"CVE-2013-4167","sourceIdentifier":"secalert@redhat.com","published":"2013-10-11T22:55:39.660","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad de XSS en CMS Made Simple (CMSMS) anterior a la versión 1.11.7 permite a atacantes remotos inyectar script web o HTML arbitrario a través de vectores no especificados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:*:*:*:*:*:*:*:*","versionEndIncluding":"1.11.6","matchCriteriaId":"EC15CE10-4ABB-4277-8CAC-D714A02BA4E9"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11:*:*:*:*:*:*:*","matchCriteriaId":"578303F3-6729-45A9-8DBE-A2C393E7BB2A"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.1:*:*:*:*:*:*:*","matchCriteriaId":"93A32CE1-85A4-417F-90D4-1378B61A45E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2:*:*:*:*:*:*:*","matchCriteriaId":"D63AC3D8-0297-423B-9D50-59F7B1582348"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2.1:*:*:*:*:*:*:*","matchCriteriaId":"272A22FB-4553-47FD-88D6-B2D0C096F6EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.3:*:*:*:*:*:*:*","matchCriteriaId":"C57412ED-477E-463D-91AB-CC02149A6E23"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.4:*:*:*:*:*:*:*","matchCriteriaId":"B2AB67E7-4528-4AE0-9B60-DD5B1B71D17E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.5:*:*:*:*:*:*:*","matchCriteriaId":"5CD8DAF5-2EE2-40D2-9DFA-1D2BA749757D"}]}]}],"references":[{"url":"http://forum.cmsmadesimple.org/viewtopic.php?f=1&t=66590&p=299356","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2013/07/21/1","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2013/07/25/7","source":"secalert@redhat.com"},{"url":"https://twitter.com/LeakFree/status/336942367351394305","source":"secalert@redhat.com"},{"url":"http://forum.cmsmadesimple.org/viewtopic.php?f=1&t=66590&p=299356","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2013/07/21/1","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2013/07/25/7","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://twitter.com/LeakFree/status/336942367351394305","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}