CVE-2019-10106 (cms_made_simple)

CMS Made Simple 2.2.10 has XSS via the ‘moduleinterface.php’ Name field, which is reachable via an “Add Category” action to the “Site Admin Settings – News module” section.
Source: NIST
CVE-2019-10106 (cms_made_simple)