Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2758

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00273EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 10:34 a.m.7 views

CVE-2024-8660

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.8CVSS5.7AI score0.00273EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/09/17 9:30 p.m.23 views

Concrete CMS stored XSS vulnerability in the "Top Navigator Bar" block

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.8CVSS5.7AI score0.00273EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/09/17 9:30 p.m.7 views

GHSA-998C-Q8HH-H8GV Concrete CMS stored XSS vulnerability in the "Top Navigator Bar" block

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.8CVSS4.7AI score0.00273EPSS
Exploits0References5
NVD
NVD
added 2024/09/17 7:15 p.m.29 views

CVE-2024-8660

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.8CVSS0.00273EPSS
Exploits0References2
Snyk
Snyk
added 2024/09/17 6:41 p.m.4 views

Cross-site Scripting (XSS)

Overview concrete5/concrete5 is a concrete5 open source CMS. Affected versions of this package are vulnerable to Cross-site Scripting XSS due to insufficient sanitization of the Top Navigator Bar block output. An attacker can execute arbitrary scripts in the context of the user's browser session ...

4.8CVSS5.5AI score0.00273EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/09/17 6:13 p.m.12 views

CVE-2024-8660 Stored XSS in the "Top Navigator Bar" block

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.6CVSS6AI score0.00273EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/09/17 6:13 p.m.30 views

CVE-2024-8660 Stored XSS in the "Top Navigator Bar" block

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.6CVSS0.00273EPSS
Exploits0References2
CVE
CVE
added 2024/09/17 6:13 p.m.48 views

CVE-2024-8660

CVE-2024-8660 affects Concrete CMS versions 9.0.0–9.3.3. It is a stored XSS in the "Top Navigator Bar" block caused by insufficient sanitization; a rogue administrator could inject payloads that execute when targeted users visit the home page. Versions below 9.0.0 are unaffected due to absence of...

4.8CVSS4.8AI score0.00273EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/09/17 6:13 p.m.11 views

CVE-2024-8660 Stored XSS in the "Top Navigator Bar" block

Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue administrator could add a malicious payload that could be executed when targeted users visited the ho...

4.6CVSS6AI score0.00273EPSS
Exploits0References4
Rows per page
Query Builder