CVE-2026-4225 | CMS Made Simple up to 2.2.21 User Management admin/listusers.php Message cross site scripting

A vulnerability classified as problematic has been found in CMS Made Simple up to 2.2.21. Impacted is an unknown function of the file admin/listusers.php of the component User Management Module. Performing a manipulation of the argument Message results in cross site scripting.

This vulnerability is reported as CVE-2026-4225. The attack is possible to be carried out remotely. Moreover, an exploit is present.VulDB Recent EntriesRead More