Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2021/10/05 12:0 a.m.12 views

Concrete CMS < 8.5.6 Multiple Vulnerabilities

Concrete CMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:concretecms:concretecms"; if...

9.8CVSS7.5AI score0.02425EPSS
Exploits0References1
NVD
NVD
added 2021/09/23 1:15 p.m.14 views

CVE-2021-22953

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to clone topics which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security Research Team"...

5.8CVSS0.00346EPSS
Exploits0References2
NVD
NVD
added 2021/09/23 1:15 p.m.22 views

CVE-2021-22949

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to duplicate files which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security CMS Research Team"...

5.8CVSS0.00346EPSS
Exploits0References2
Prion
Prion
added 2021/09/23 1:15 p.m.13 views

Cross site request forgery (csrf)

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to clone topics which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security Research Team"...

5.8CVSS5.5AI score0.00346EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/09/23 1:15 p.m.15 views

Cross site request forgery (csrf)

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to duplicate files which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security CMS Research Team"...

5.8CVSS5.5AI score0.00346EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/09/23 12:42 p.m.15 views

CVE-2021-22953

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to clone topics which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security Research Team"...

6.7AI score0.00346EPSS
Exploits0References2
CVE
CVE
added 2021/09/23 12:42 p.m.52 views

CVE-2021-22953

Concrete CMS CVE-2021-22953 is a CSRF flaw affecting version 8.5.5 and earlier. The vulnerability allows an attacker to clone topics, causing UI inconvenience and potential disk-space exhaustion. Affected product/version: Concrete CMS 8.5.5 and below. Root cause: cross-site request forgery in top...

5.8CVSS6.4AI score0.00346EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/09/23 12:40 p.m.26 views

CVE-2021-22949

A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to duplicate files which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security CMS Research Team"...

6.7AI score0.00346EPSS
Exploits0References2
CVE
CVE
added 2021/09/23 12:40 p.m.46 views

CVE-2021-22949

CVE-2021-22949 is a CSRF in Concrete CMS versions 8.5.5 and earlier that allows an attacker to duplicate files, causing UI issues and potential disk-space exhaustion. The root cause is cross-site request forgery affecting file-duplication functionality; no exploit details are provided beyond this...

5.8CVSS6.4AI score0.00346EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder