CVE-2024-8660 | Concrete CMS up to 9.3.3 Top Navigator Bar cross site scripting

Inserito da Angelo Barbosa | Set 17, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Concrete CMS up to 9.3.3. Affected is an unknown function of the component Top Navigator Bar. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-8660. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8660 | Concrete CMS up to 9.3.3 Top Navigator Bar cross site scripting

Post correlati

CVE-2024-28667 | DedeCMS 5.7 templets_one_edit.php cross-site request forgery

CVE-2024-24563 | vyperlang Vyper up to 0.3.10 array index (GHSA-52xq-j7v9-v4v2)

CVE-2024-30891 | Tenda AC18 15.03.05.05 /goform/exeCommand cmdinput command injection

CVE-2024-0342 | Inis up to 2.0.1 Sqlite.php sql sql injection