CVE-2019-10107 (cms_made_simple)

CMS Made Simple 2.2.10 has XSS via the myaccount.php “Email Address” field, which is reachable via the “My Preferences -> My Account” section.
Source: NIST
CVE-2019-10107 (cms_made_simple)