CVE-2023-44760 - Multiple XSS Vulnerabilities in Concrete CMS v9.2.1 - What You Need to Know
In late 2023, security researcher sromanhu reported a set of Cross Site Scripting (XSS) vulnerabilities in Concrete CMS v9.2.1 under CVE-2023-44760. This report
CVE-2023-44763 - Exploiting Concrete CMS v9.2.1 - Arbitrary File Upload (XSS) via Thumbnail PDF Upload
---
Introduction
Concrete CMS is a popular open-source content management system used by many organizations to build and manage websites. In late 2023, security researchers
CVE-2022-43693 - Concrete CMS CSRF Flaw in Core OAuth – How Attackers Can Hijack Your Login
Concrete CMS is a popular open-source content management system powering many government and enterprise websites. In late 2022, a worrying vulnerability — now tracked as CVE-2022-43693
Episode
00:00:00
00:00:00