PT-2024-30597 · Unknown · Concrete Cms
Name of the Vulnerable Software and Affected Versions: Concrete CMS versions 9.0.0 through 9.3.2 Description: The issue is a stored XSS vulnerability in the generate dashboard board instance functionality. The Name input field does not check the input sufficiently, letting a rogue administrator...