A Cross Site Scripting (XSS) vulnerability in Concrete CMS versions 8.5.12 and below, and 9.0 through 9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-06T00:00:00
Updated: 2023-12-07T07:34:02.390075
Reserved: 2023-10-02T00:00:00
Link: CVE-2023-44765
JSON object: View
NVD Information
Status : Modified
Published: 2023-10-06T13:15:12.923
Modified: 2023-12-07T08:15:07.140
Link: CVE-2023-44765
JSON object: View
Redhat Information
No data.
CWE