CVE-2014-2245

Published Mar 5, 2014
Last updated 4 months ago
CVSS info 6.0
Overview

Description: SQL injection vulnerability in the News module in CMS Made Simple (CMSMS) before 1.11.10 allows remote authenticated users with the "Modify News" permission to execute arbitrary SQL commands via the sortby parameter to admin/moduleinterface.php. NOTE: some of these details are obtained from third party information.
Source: cve@mitre.org
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 6
Impact score: 6.4
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: CWE-89
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6AC509FC-2CBB-4756-A4A3-932762C0E4A7",
            "versionEndIncluding": "1.11.9"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BE0143D1-03F2-497B-A24D-8C989C10EFBA"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B36B7B1-8A62-4A2D-A0E3-360DC56CE661"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F57C668-24A4-4E57-8737-71DD84356986"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFDA54CA-3D5B-4D30-864B-B4227961FABD"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2CA4D26A-0FA0-4998-B8EB-23BAE3C4B6A8"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCFA77F1-B40F-4DC5-AD48-4EA403E691C6"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD39CD3A-0982-4BA3-A965-56BA06EDE972"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "262B4547-CAEB-44A0-AB42-8D51C06DC0B6"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7F4228D-8EEA-49B5-B3A2-2298477BB830"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1AB6A475-ADAC-4C31-9C27-C32E79E65A85"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41E3BC7F-E4CD-410F-90E9-BE3352846FE1"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE089F0E-CEAC-45C2-9F50-9DDDA77BA16C"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.6.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C39AFF8F-8D83-4E41-BFA6-0DB4C76AB2C8"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.6.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05DDCE27-5140-4D88-A9BF-9D77DF0D1B7F"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81464454-2834-4387-9093-679EC9F57A00"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.7.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98904F65-B481-455F-BF9B-CDFF8B0964B2"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.7.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3DDCBA15-205B-4879-8B64-F3264FD097E5"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.7.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2056E4B7-2528-40A4-B28E-8E4FB3E6361F"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02FEC8DD-413B-4669-BEBF-C62B9A79D70E"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "418CD161-9F55-4631-A08C-08A9CF05CEC0"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F38D4B6-A255-4AAC-8AFF-DAB97C1B558F"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "192B8763-CB7B-45AB-A5AD-1B9675CF8D06"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.9.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A313016-9EC8-4AE0-A880-D95A17BA990B"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.9.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB70F8F-F931-4AFC-8C5C-D1A56BDA63B6"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B87A7B4D-FB2C-4896-BF22-76F5D16A995E"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3690E06D-394E-44BC-9929-B17B2734D80A"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAED3443-D64D-4FF6-851C-90A99F61CCC5"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.10.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D76634F-6DC4-49CD-8060-21F2ED17F652"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.10.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0FBFCAD-8850-4804-9B2A-566FDDE39685"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C94DE9A2-E9AA-43BC-8D1F-EFA97722C482"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DCBA3A6-3776-470D-BFC7-E4836D2A586F"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.11.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C7F327F-CA20-47C1-BF99-AB4A439EAB07"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04796760-3ED2-4B65-B571-6685916A8130"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.12.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B5C6034-A597-41A6-9F1A-F3DAB63DF31C"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.12.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FE3B4A8-9C8A-46D2-A8EB-49FD3533ED3D"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4AA57A0-804A-4008-A131-0DF259A5515F"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "43F7E5BD-553E-4731-BED1-7E7DB772AD82"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4BF3B2C-1909-4CCF-A487-6378615D6A4A"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD2946B5-8AAF-4386-8C31-7D291C31BB7E"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AB06C16-336C-4D85-84F6-24F079A2B144"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4FB1C531-AA30-4B89-A8BF-744B053B4983"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD0AE7F4-49F8-443A-9C8F-2F1C42F46713"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0203A997-A077-4A8A-A3FE-CA9D10FF43AC"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "574E610A-4799-45C9-B005-C1593B033AD9"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F3B9680-3A66-4508-A318-B9B348FDC222"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BDADD27-8249-4DE3-A2B5-EE1A3AD73F28"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8E3417F0-EBAF-405E-A26E-F3EA570A0447"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87178F45-424A-47D8-BEA5-B8371B722CC5"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38CCB2E6-7722-4F23-AEF4-E720D1D63801"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4263AF5A-FE04-4EAC-87C2-03B042C0A71E"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECB069E1-970B-456E-B477-DCD68F4CCCBC"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D205015-13AE-45D2-9309-3D9C90B0C3D7"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.10.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18C19AF4-A88F-4835-8A36-394637C6BD64"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "578303F3-6729-45A9-8DBE-A2C393E7BB2A"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93A32CE1-85A4-417F-90D4-1378B61A45E6"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D63AC3D8-0297-423B-9D50-59F7B1582348"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "272A22FB-4553-47FD-88D6-B2D0C096F6EE"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C57412ED-477E-463D-91AB-CC02149A6E23"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2AB67E7-4528-4AE0-9B60-DD5B1B71D17E"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CD8DAF5-2EE2-40D2-9DFA-1D2BA749757D"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F883A9BD-A10A-4EA5-AE2C-22994D650E0C"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B35E25E4-A524-43FF-923F-446DB297CE26"
          },
          {
            "criteria": "cpe:2.3:a:cmsmadesimple:cms_made_simple:1.11.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E8C4A8F-1A37-4A7B-A702-E889FF17FAF7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
