CVE-2018-10030 (v3: 8.8)
11 Apr 2018
CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/siteprefs.php.