This page lists publicly disclosed CVE vulnerabilities affecting cmsmadesimple form_builder (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-6072 | CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via defaultadmin. | [email protected] | 5.3 | 0.24% | 2017-02-21 | 2026-05-13 |
| CVE-2017-6071 | CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to conduct information-disclosure attacks via exportxml. | [email protected] | 5.3 | 0.31% | 2017-02-21 | 2026-05-13 |
| CVE-2017-6070 | CMS Made Simple version 1.x Form Builder before version 0.8.1.6 allows remote attackers to execute PHP code via the cntnt01fbrp_forma_form_template parameter in admin_store_form. | [email protected] | 9.8 | 0.80% | 2017-02-21 | 2026-05-13 |