2 matches found
CVE-2021-40099
An issue was discovered in Concrete CMS through 8.5.5. Fetching the update json scheme over HTTP leads to remote code execution...
CVE-2021-40099
Concrete CMS up to version 8.5.5 is affected by a vulnerability in the update JSON scheme fetched over HTTP, which can lead to remote code execution. The OpenVAS entry flags “Concrete CMS