CVE-2025-5153 – CMS Made Simple Design Manager Module Cross-Site Scripting Vulnerability

May 25, 2025

CVE ID : CVE-2025-5153

Published : May 25, 2025, 6:15 p.m. | 2 hours, 41 minutes ago

Description : A vulnerability, which was classified as problematic, has been found in CMS Made Simple 2.2.21. This issue affects some unknown processing of the component Design Manager Module. The manipulation of the argument Description leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5154 – PhonePe SQLite Database Cleartext Storage Vulnerability

Next Article CVE-2025-5152 – “Chanjet CRM SQL Injection Vulnerability”

Twilio’s Event Triggered Journeys, OutSystem’s Agent Workbench, and more – Daily News Digest

Harness Infrastructure as Code Management expands with features that facilitate better reusability

Akka introduces platform for distributed agentic AI

Design Patterns For AI Interfaces

I tested Dyson’s pricey flagship headphones and they’re better than I expected

60% of managers use AI to make decisions now, including whom to promote and fire – does yours?

4 ways Google Wallet can make your life easier (and more organized)

How to maximize your Windows 11 PC’s battery life in 9 easy steps

The details of TC39’s last meeting

The details of TC39’s last meeting

How Agentic AI is Reshaping Marketing and CX Operations

We’re Moving! NodeSource Distributions Now Have a New Home – With Extended Support

Blender 4.5 LTS Released with ‘Full Vulkan Support’

Blender 4.5 LTS Released with ‘Full Vulkan Support’

nsupdate.info – software used to implement a free dynamic DNS service

Windows 11’s handheld gaming UI references spotted ahead of Xbox Ally

CVE-2025-5153 – CMS Made Simple Design Manager Module Cross-Site Scripting Vulnerability

Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros

Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads

Shokz joins in on the clip-on earbud craze, releasing its most advanced (and expensive) earbuds yet

VictoriaMetrics is a scalable solution for monitoring and managing time series data

How to Guide Your Clients to the Best WordPress Solutions

Empowering the next generation for an AI-enabled world

Rilasciato FreeDOS 1.4: Un aggiornamento importante per il sistema operativo compatibile con MS-DOS

Beware of phone scams demanding money for ‘missed jury duty’

CVE-2025-46330 – Snowflake libsnowflakeclient HTTP Request Retry Denial of Service

Microsoft Office Vulnerabilities Let Attackers Execute Remote Code

CVE-2025-5153 – CMS Made Simple Design Manager Module Cross-Site Scripting Vulnerability

Related Posts