Lucene search
K

4 matches found

CNVD
CNVD
added 2023/10/09 12:0 a.m.23 views

PortlandLabs Concrete CMS SEO-Extra Feature Cross-Site Scripting Vulnerability

PortlandLabs Concrete CMS is a team-oriented open source content management system of the United States PortlandLabs company . A cross-site scripting vulnerability exists in the PortlandLabs Concrete CMS SEO-Extra feature, which can be exploited by an attacker to execute arbitrary code via a...

4.8CVSS6.7AI score0.00558EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/10/06 1:15 p.m.5 views

CVE-2023-44766

A Cross Site Scripting XSS vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to the SEO - Extra from Page Settings. NOTE: the vendor disputes this because this SEO-related header change can only be made by an admin, and allowing an admin to...

4.8CVSS6.1AI score0.00637EPSS
Exploits2References3
Prion
Prion
added 2023/10/06 1:15 p.m.20 views

Cross site scripting

A Cross Site Scripting XSS vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to the SEO - Extra from Page Settings. NOTE: the vendor disputes this because this SEO-related header change can only be made by an admin, and allowing an admin to...

4.3CVSS5.4AI score0.00637EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2023/10/06 12:0 a.m.6 views

PortlandLabs Concrete CMS 跨站脚本漏洞

PortlandLabs Concrete CMS is a team-oriented open source content management system of the United States PortlandLabs company . A cross-site scripting vulnerability exists in the PortlandLabs Concrete CMS SEO-Extra feature, which can be exploited by an attacker to execute arbitrary code via a...

4.8CVSS6.8AI score0.00637EPSS
Exploits2References3
Rows per page
Query Builder