A vulnerability classified as problematic has been found in Concrete CMS up to 8.5.5 (Content Management System). Affected is an unknown function of the component Conversation Handler. Upgrading to version 8.5.6 eliminates this vulnerability. The upgrade is hosted for download at documentation.concretecms.org.
Concrete CMS up to 8.5.5 Conversation cross site scripting
- Virtual Patching
- September 24, 2021
- 6:04 pm
Contact us to get started
CVE-2023-5288 : SICK SIM1012 Access Control
Description A remote unauthorized attacker may connect to the SIM1012, interact with the device and change configuration settings. The adversary
CVE-2023-44466 : Linux Kernel up to 6.4.4 Ceph File System net/ceph/messenger_v2.c Buffer Overflow
Description An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error, leading
CVE-2023-20252 : CISCO CATALYST SD-WAN MANAGER SAML API IMPROPER AUTHENTICATION
Description A vulnerability in the Security Assertion Markup Language (SAML) APIs of Cisco Catalyst SD-WAN Manager Software could allow an