CVE-2026-8353 | Concrete CMS up to 9.5.0 cross site scripting

Inserito da Angelo Barbosa | Mag 22, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Concrete CMS up to 9.5.0. The affected element is an unknown function. Executing a manipulation can lead to cross site scripting.

This vulnerability is handled as CVE-2026-8353. The attack can be executed remotely. There is not any exploit available.

CVE-2026-8353 | Concrete CMS up to 9.5.0 cross site scripting

Post correlati

CVE-2026-7673 | crmeb_java up to 1.3.4 Admin Upload UploadServiceImpl.java model unrestricted upload

CVE-2020-10367 | BlueZ Spectra memory corruption

CVE-2025-5444 | Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 RP_UpgradeFWByBBS type/ch/ssidhex/security/extch/pwd/mode/ip/nm/gw os command injection

CVE-2024-52033 | Rakuten Mobile Rakuten Turbo 5G up to 1.3.18 exposure of sensitive system information to an unauthorized control sphere