0.0004 Low
EPSS
Percentile
14.2%
A Cross Site Scripting (XSS) vulnerability in Concrete CMS before 9.2.3 exists via the Name parameter during installation (aka Site of Installation or Settings).
documentation.concretecms.org/developers/introduction/version-history/923-release-notes
github.com/sromanhu/ConcreteCMS-Stored-XSS---Site_Installation