CVE-2026-8239 | Concrete CMS up to 9.5.0 Message get_rating authorization

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Concrete CMS up to 9.5.0. The affected element is an unknown function of the file /ccm/frontend/conversations/get_rating of the component Message Handler. This manipulation causes missing authorization.

This vulnerability is tracked as CVE-2026-8239. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-8239 | Concrete CMS up to 9.5.0 Message get_rating authorization

Post correlati

CVE-2024-5488 | SEOPress Plugin up to 7.8 on WordPress REST API Route deserialization

CVE-2026-36948 | SourceCodester Online Thesis Archiving System 1.0 /otas/view_archive.php sql injection

CVE-2024-25579 | Elecom WRC-1167GS2-B Request os command injection

CVE-2024-57991 | Linux Kernel up to 6.13.1 chan.c rtw89_entity_recalc_mgnt_roles denial of service