3 matches found
CVE-2023-28473
Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to possible Auth bypass in the jobs section...
CVE-2023-28473
Concrete CMS previously concrete5 versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to possible Auth bypass in the jobs section...
CVE-2023-28473
Concrete CMS (formerly concrete5) versions 8.5.12 and earlier, and 9.0–9.1.3, are vulnerable to an authentication bypass in the jobs section. The issue stems from insufficient authentication checks (Job.php) and has been discussed in multiple advisories. Remediation: upgrade to version 9.2 or lat...