PT-2024-19058 · Unknown · Concrete Cms
Name of the Vulnerable Software and Affected Versions: Concrete CMS versions 9.0.0 through 9.2.6 Description: The issue is related to insufficient validation of administrator-provided data for the Name field of a Group type, allowing a rogue administrator to inject malicious code, which might be...