CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

Veracode•added 2023/10/10 3:42 p.m.•18 views

Cross Site Scripting

concrete5 is vulnerable to Cross Site Scripting XSS. The attacker is able to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings...

5.4CVSS7.1AI score0.00298EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2023/10/06 3:30 p.m.•18 views

ConcreteCMS Cross-site Scripting vulnerability

A Cross Site Scripting XSS vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings...

5.4CVSS6.5AI score0.00298EPSS

Exploits1References7Affected Software1

OSV•added 2023/10/06 3:30 p.m.•8 views

GHSA-6XX7-R8X4-FPJP ConcreteCMS Cross-site Scripting vulnerability

A Cross Site Scripting XSS vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings...

5.4CVSS5.2AI score0.00298EPSS

Exploits1References7

Prion•added 2023/10/06 1:15 p.m.•13 views

Cross site scripting

A Cross Site Scripting XSS vulnerability in Concrete CMS versions 8.5.12 and below, and 9.0 through 9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings...

4.9CVSS5.3AI score0.00298EPSS

Exploits1References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by