{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5203", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-03-31T08:40:14.589Z", "datePublished": "2026-03-31T15:45:08.773Z", "dateUpdated": "2026-03-31T17:35:35.625Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-03-31T15:45:08.773Z"}, "title": "CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "Path Traversal"}]}], "affected": [{"vendor": "n/a", "product": "CMS Made Simple", "versions": [{"version": "2.2.0", "status": "affected"}, {"version": "2.2.1", "status": "affected"}, {"version": "2.2.2", "status": "affected"}, {"version": "2.2.3", "status": "affected"}, {"version": "2.2.4", "status": "affected"}, {"version": "2.2.5", "status": "affected"}, {"version": "2.2.6", "status": "affected"}, {"version": "2.2.7", "status": "affected"}, {"version": "2.2.8", "status": "affected"}, {"version": "2.2.9", "status": "affected"}, {"version": "2.2.10", "status": "affected"}, {"version": "2.2.11", "status": "affected"}, {"version": "2.2.12", "status": "affected"}, {"version": "2.2.13", "status": "affected"}, {"version": "2.2.14", "status": "affected"}, {"version": "2.2.15", "status": "affected"}, {"version": "2.2.16", "status": "affected"}, {"version": "2.2.17", "status": "affected"}, {"version": "2.2.18", "status": "affected"}, {"version": "2.2.19", "status": "affected"}, {"version": "2.2.20", "status": "affected"}, {"version": "2.2.21", "status": "affected"}, {"version": "2.2.22", "status": "affected"}], "cpes": ["cpe:2.3:a:cms_made_simple:cms_made_simple:*:*:*:*:*:*:*:*"], "modules": ["UserGuide Module XML Import"]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in CMS Made Simple up to 2.2.22. This impacts the function _copyFilesToFolder in the library modules/UserGuide/lib/class.UserGuideImporterExporter.php of the component UserGuide Module XML Import. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. This issue has been reported early to the project. They confirmed, that \"this has already been discovered and fixed for the next release.\""}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 5.1, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 4.7, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R", "baseSeverity": "MEDIUM"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 4.7, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R", "baseSeverity": "MEDIUM"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5.8, "vectorString": "AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"}}], "timeline": [{"time": "2026-03-31T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-03-31T02:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-03-31T10:45:27.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "caginkyr (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/vuln/354331", "name": "VDB-354331 | CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/354331/cti", "name": "VDB-354331 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/submit/772855", "name": "Submit #772855 | CMSMadeSimple CMS Made Simple (CMSMS) 2.2.22 and old versions modules/UserGuide/lib/class.UserGuideImporterExporter.php", "tags": ["third-party-advisory"]}, {"url": "https://drive.proton.me/urls/Q0JHZ339BW#X9P2G3Guwvwa", "tags": ["exploit"]}], "tags": ["x_open-source"]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-31T17:35:26.772515Z", "id": "CVE-2026-5203", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-31T17:35:35.625Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-5203", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-31T17:35:26.772515Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-31T17:35:31.428Z"}}], "cna": {"tags": ["x_open-source"], "title": "CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal", "credits": [{"lang": "en", "type": "reporter", "value": "caginkyr (VulDB User)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 5.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 4.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 4.7, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5.8, "vectorString": "AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"}}], "affected": [{"cpes": ["cpe:2.3:a:cms_made_simple:cms_made_simple:*:*:*:*:*:*:*:*"], "vendor": "n/a", "modules": ["UserGuide Module XML Import"], "product": "CMS Made Simple", "versions": [{"status": "affected", "version": "2.2.0"}, {"status": "affected", "version": "2.2.1"}, {"status": "affected", "version": "2.2.2"}, {"status": "affected", "version": "2.2.3"}, {"status": "affected", "version": "2.2.4"}, {"status": "affected", "version": "2.2.5"}, {"status": "affected", "version": "2.2.6"}, {"status": "affected", "version": "2.2.7"}, {"status": "affected", "version": "2.2.8"}, {"status": "affected", "version": "2.2.9"}, {"status": "affected", "version": "2.2.10"}, {"status": "affected", "version": "2.2.11"}, {"status": "affected", "version": "2.2.12"}, {"status": "affected", "version": "2.2.13"}, {"status": "affected", "version": "2.2.14"}, {"status": "affected", "version": "2.2.15"}, {"status": "affected", "version": "2.2.16"}, {"status": "affected", "version": "2.2.17"}, {"status": "affected", "version": "2.2.18"}, {"status": "affected", "version": "2.2.19"}, {"status": "affected", "version": "2.2.20"}, {"status": "affected", "version": "2.2.21"}, {"status": "affected", "version": "2.2.22"}]}], "timeline": [{"lang": "en", "time": "2026-03-31T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-03-31T02:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-03-31T10:45:27.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/vuln/354331", "name": "VDB-354331 | CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/354331/cti", "name": "VDB-354331 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/submit/772855", "name": "Submit #772855 | CMSMadeSimple CMS Made Simple (CMSMS) 2.2.22 and old versions modules/UserGuide/lib/class.UserGuideImporterExporter.php", "tags": ["third-party-advisory"]}, {"url": "https://drive.proton.me/urls/Q0JHZ339BW#X9P2G3Guwvwa", "tags": ["exploit"]}], "descriptions": [{"lang": "en", "value": "A vulnerability was found in CMS Made Simple up to 2.2.22. This impacts the function _copyFilesToFolder in the library modules/UserGuide/lib/class.UserGuideImporterExporter.php of the component UserGuide Module XML Import. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. This issue has been reported early to the project. They confirmed, that \"this has already been discovered and fixed for the next release.\""}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "Path Traversal"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-03-31T15:45:08.773Z"}}}, "cveMetadata": {"cveId": "CVE-2026-5203", "state": "PUBLISHED", "dateUpdated": "2026-03-31T17:35:35.625Z", "dateReserved": "2026-03-31T08:40:14.589Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-03-31T15:45:08.773Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was found in CMS Made Simple up to 2.2.22. This impacts the function _copyFilesToFolder in the library modules/UserGuide/lib/class.UserGuideImporterExporter.php of the component UserGuide Module XML Import. The manipulation results in path traversal. It is possible to launch the attack remotely. The exploit has been made public and could be used. This issue has been reported early to the project. They confirmed, that \"this has already been discovered and fixed for the next release.\""}], "id": "CVE-2026-5203", "lastModified": "2026-04-29T01:00:01.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "MULTIPLE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:M/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.4, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 3.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 2.0, "baseSeverity": "LOW", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-03-31T16:16:35.723", "references": [{"source": "cna@vuldb.com", "url": "https://drive.proton.me/urls/Q0JHZ339BW#X9P2G3Guwvwa"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/submit/772855"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/354331"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/354331/cti"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.7"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.8"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.9"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.10"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.11"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.12"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.13"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.14"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.15"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.16"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.17"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.18"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.19"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.20"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.21"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "2.2.22"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "CMS Made Simple", "source": "cna", "vendor": "n/a"}, "product": "cms_made_simple", "vendor": "cms_made_simple"}], "analysis": {"en": {"generated_at": "2026-03-31T17:23:55.581118+00:00", "value": {"mitigation_remediation": ["Update CMS Made Simple to version 2.2.23 or later", "Restrict file write permissions for the UserGuide module directory and run the web server with minimal privileges", "Monitor web server logs for unauthorized file write or read attempts", "Disable the XML import feature if it is not required"], "summary": {"action": "Immediate Patch", "impact": "Path Traversal"}, "threat_synthesis": {"affected_systems": "CMS Made Simple users running version 2.2.22 or earlier are affected. The vulnerability is in the UserGuide Module located at modules/UserGuide/lib/class.UserGuideImporterExporter.php. The issue has been acknowledged and patched in the next release, so systems on versions newer than 2.2.22 are not vulnerable.", "description_and_impact": "A path traversal flaw exists in the UserGuide Module XML Import component of CMS Made Simple, allowing an attacker to specify arbitrary file paths during the import process. The flaw is triggered remotely and permits writing or reading files outside the intended directory tree. Exploitation could enable an attacker to overwrite critical files, inject malicious code, or expose sensitive data, potentially leading to full system compromise.", "risk_and_exploitability": "The CVSS base score of 5.1 reflects a moderate severity, and the public nature of the exploit indicates it can be leveraged remotely with no local privileges. EPSS data is unavailable and the vulnerability is not currently tracked in the CISA KEV catalog. Attackers would likely exploit the flaw by triggering an XML import request with a crafted file path, causing the server to write files in arbitrary locations. As the flaw can be triggered over the network, the risk to exposed installations is significant until the patch is applied."}}}}, "created": "2026-03-31T19:54:04.222841+00:00", "updated": "2026-03-31T20:38:00.986127+00:00", "vendors": ["cms_made_simple", "cms_made_simple$PRODUCT$cms_made_simple"]}