EPSS
Percentile
70.1%
Concrete5 before 8.5.3 allows Unrestricted Upload of File with Dangerous Type such as a .phar file.
github.com/concrete5/concrete5
github.com/concrete5/concrete5/pull/8713
github.com/concrete5/concrete5/releases/tag/8.5.3
github.com/concretecms/concretecms/commit/d296f4ba4f6ad94b199c21c1b16f0d185adab343
herolab.usd.de/security-advisories/usd-2020-0041
nvd.nist.gov/vuln/detail/CVE-2020-11476