CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/06/05 7:43 p.m.•5 views

CVE-2026-8413

Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery CSRF at concrete/controllers/dialog/page/bulk/design. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonata...

8.8CVSS5.5AI score0.0013EPSS

Exploits0References1

EUVD•added 2026/05/22 12:31 a.m.•10 views

EUVD-2026-31375

2.3CVSS5.8AI score0.0013EPSS

Exploits0References2

Cvelist•added 2026/05/21 9:30 p.m.•31 views

CVE-2026-8413 Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/design

2.3CVSS0.0013EPSS

Exploits0References1

ATTACKERKB•added 2026/05/21 9:30 p.m.•7 views

CVE-2026-8413

2.3CVSS5.8AI score0.0013EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/21 9:30 p.m.•19 views

CVE-2026-8413

Concrete CMS

8.8CVSS5.8AI score0.0013EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/05/21 12:0 a.m.•13 views

Concrete CMS 跨站请求伪造漏洞

Concrete CMS is an open-source content management system developed by Concrete CMS. Versions prior to Concrete CMS 9.5.0 had a cross-site request forgeing vulnerability, which was exploited through the concrete/controllers/dialog/page/bulk/design code...

8.8CVSS5.7AI score0.0013EPSS

Exploits0References1

Positive Technologies•added 2026/05/21 12:0 a.m.•10 views

PT-2026-42569

Name of the Vulnerable Software and Affected Versions Concrete CMS versions 9.0.0 through 9.4.x Description Cross Site Request Forgery CSRF occurs at the 'concrete/controllers/dialog/page/bulk/design' endpoint. CSRF is a flaw that allows an attacker to induce users to perform actions they do not...

2.3CVSS5.8AI score0.0013EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by