What the vulnerability does
01Description
Concrete CMS (previously concrete5) versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to stored XSS on API Integrations via the name parameter.
CVSS base score
CVSS vector
CVSS:3.1/AC:L/AV:N/A:N/C:H/I:L/PR:H/S:U/UI:N
What the vulnerability does
Concrete CMS (previously concrete5) versions 8.5.12 and below, and 9.0 through 9.1.3 is vulnerable to stored XSS on API Integrations via the name parameter.
Key dates
External resources