PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. PortlandLabs Concrete CMS is vulnerable to an arbitrary file deletion vulnerability that stems from allowing traversal of /index.php/ccm/system/file/ upload, which can be exploited by attackers to cause arbitrary file deletion.
CPE | Name | Operator | Version |
---|---|---|---|
Portland Labs Concrete CMS | le | 8.5.7 | |
Portland Labs Concrete CMS >=9.0.0, | le | 9.0.2 |