Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-43694

Disclosure Date: November 14, 2022 (last updated February 24, 2025)
Concrete CMS (formerly concrete5) below 8.5.10 and between 9.0.0 and 9.1.2 is vulnerable to Reflected XSS in the image manipulation library due to un-sanitized output.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0