2 matches found
CVE-2023-49337
Concrete CMS before 9.2.3 allows Stored XSS on the Admin Dashboard via /dashboard/system/basics/name. 8.5 and earlier are unaffected...
Concrete CMS Security Vulnerability
PortlandLabs Concrete CMS is an open source team-oriented content management system from PortlandLabs, Inc. A security vulnerability exists in Concrete CMS prior to version 9.2.3, which stems from a stored cross-site scripting attack via /dashboard/system/basics/name...