Lucene search

CVE-2022-43694

🗓️ 14 Nov 2022 19:24:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 56 Views

Concrete CMS vulnerable to Reflected XSS in image manipulation librar

Reporter	Title	Published	Views	Family All 7
OSV	CVE-2022-43694	14 Nov 202219:15	–	osv
OSV	Concrete CMS vulnerable to Reflected Cross-site Scripting via image manipulation library	15 Nov 202212:00	–	osv
NVD	CVE-2022-43694	14 Nov 202219:15	–	nvd
Veracode	Cross-site Scripting (XSS)	15 Nov 202205:09	–	veracode
Prion	Cross site scripting	14 Nov 202219:15	–	prion
Cvelist	CVE-2022-43694	14 Nov 202200:00	–	cvelist
Github Security Blog	Concrete CMS vulnerable to Reflected Cross-site Scripting via image manipulation library	15 Nov 202212:00	–	github

Nvd

Node

concretecms concrete_cmsRange<8.5.10

concretecms concrete_cmsRange9.0.0–9.1.2

Source	Link
concretecms	www.concretecms.org/about/project-news/security/concrete-cms-security-advisory-2022-10-31
documentation	www.documentation.concretecms.org/developers/introduction/version-history/913-release-notes
github	www.github.com/concretecms/concretecms/releases/9.1.3
documentation	www.documentation.concretecms.org/developers/introduction/version-history/8510-release-notes
github	www.github.com/concretecms/concretecms/releases/8.5.10

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Nov 2022 19:15Current

5.9Medium risk

Vulners AI Score5.9

CVSS36.1

EPSS0.00449

CWE-79