11914 |
Bundled versions of smarty and PHPMailer contain security vulnerabilities |
2018-10-21 |
Minor |
2.2.8 |
Fixed |
Open |
Nobody |
Michael Orlitzky |
11955 |
admin panel output Mixed Content (HTTP and HTTPS) with custom variables in config.php file |
2019-01-24 |
Minor |
2.2.9 |
Fixed |
Open |
Robert Campbell |
Philippe Thomas |
11963 |
Pages tabindex do not output with navigator and some errors in online documentation |
2019-02-02 |
Minor |
2.2.9 |
None |
Open |
Robert Campbell |
Philippe Thomas |
12019 |
JobManager delete_jobs_by_module bug |
2019-04-10 |
Minor |
2.2.10 |
None |
Open |
Nobody |
Chris Taylor |
12048 |
The simple dropdown version of parent selector in the "Navigation" tab of "Edit Content Page" does not update the field |
2019-06-01 |
Minor |
2.2.10 |
None |
Open |
Nobody |
Sašo Živanović |
12094 |
Stored Cross-site Scripting Vulnerability in Settings-News module in CMS Made Simple |
2019-08-06 |
Minor |
2.2.10 |
None |
Open |
Nobody |
feioklucy |
12432 |
Reflected XSS in /admin/addbookmark.php |
2021-03-18 |
Minor |
2.2.15 |
Accepted |
Open |
CMS Made Simple Foundation |
Humberto Junior |
12498 |
Page Copy in ContentManager enforces Default Values (overwriting actual values) |
2021-11-24 |
Minor |
|
Awaiting Response |
Open |
Nobody |
Ludger Merkens |
12506 |
Not optimal a database query |
2021-12-20 |
Minor |
2.2.15 |
None |
Open |
Fernando Morgado |
Yuri Haperski |
12522 |
several files core correction |
2022-01-27 |
Minor |
2.2.16 |
None |
Open |
Fernando Morgado |
Philippe Thomas |
12539 |
Module FilePicker 1.0.5 files corrections |
2022-04-19 |
Minor |
|
Fixed |
Open |
Nobody |
Philippe Thomas |
12643 |
Error 500 when upgrading after step 8 on large installs |
2023-09-04 |
Minor |
2.2.18 |
None |
Open |
Nobody |
Tristan |
12657 |
CMS_Content_Block internally uses type property which collides with type parameter of e.g FilePicker |
2023-10-19 |
Minor |
2.2.18 |
None |
Open |
Nobody |
Ruud van der Velden |
12658 |
CMSContentManager new lang string 'error_edit_default_page_contenttype' |
2023-10-22 |
Minor |
2.2.18 |
Fixed |
Open |
Chris Taylor |
Jean-Claude Etiemble |
12660 |
output filter not working as expected - not sure if a bug or if I missed something |
2023-10-31 |
Minor |
2.2.18 |
Awaiting Response |
Open |
Nobody |
Volker Braun |
12662 |
File picker does not display archive files according to the icon |
2023-11-02 |
Minor |
2.2.18 |
None |
Open |
Fernando Morgado |
Jean-Claude Etiemble |
12666 |
Logs display problem in Admin Log |
2023-11-10 |
Minor |
2.2.18 |
None |
Open |
Fernando Morgado |
Jean-Claude Etiemble |
12704 |
Version 2.2.19 : in editusertag.php, when we press "Apply", if the code is correct, the message "The user tag has been correctly updated." remains permanently |
2024-04-04 |
Minor |
2.2.18 |
Fixed |
Open |
Chris Taylor |
Raymond FETIVEAU |
12711 |
Admin/Settings PHP 8.2, PHP 8.3 Deprecated |
2024-05-07 |
Minor |
2.2.20 |
Fixed |
Open |
Chris Taylor |
Jean-Claude Etiemble |
11077 |
If there's an error during user creation, the "copy settings" are not restored |
2016-07-05 |
Trivial |
2.1.4 |
None |
Open |
Nobody |
Mathieu Muths (airelibre) |
11421 |
Admin Log "Upgraded module FrontEndUsers to version" mistakenly displays version upgraded from. |
2017-06-22 |
Trivial |
2.2.1 |
None |
Open |
Nobody |
Tristan |
11568 |
OneEleven sets background color for input fields without setting text color |
2017-09-12 |
Trivial |
2.2.3.1 |
None |
Open |
Nobody |
Rimas Kudelis |
11880 |
content_image tag should accept empty value for alt parameter |
2018-08-30 |
Trivial |
2.2.8 |
Fixed |
Open |
Nobody |
Ruud van der Velden |
12001 |
Stored Cross-site Scripting in CMS Made Simple - File picker feature |
2019-03-24 |
Trivial |
2.2.10 |
None |
Open |
Nobody |
Chi Tran |
12003 |
Self-XSS vulnerability via My Account on CMSMS 2.2.10 |
2019-03-25 |
Trivial |
2.2.10 |
None |
Open |
Nobody |
Chi Tran |