CVE-2024-8660 | Concrete CMS up to 9.3.3 Top Navigator Bar cross site scripting

Inserito da Angelo Barbosa | Set 17, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Concrete CMS up to 9.3.3. Affected is an unknown function of the component Top Navigator Bar. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-8660. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8660 | Concrete CMS up to 9.3.3 Top Navigator Bar cross site scripting

Post correlati

CVE-2024-6457 | HUSKY Plugin up to 1.3.6 on WordPress sql injection

CVE-2024-41866 | Adobe InDesign Desktop up to 18.5.2/19.4 null pointer dereference (apsb24-56)

CVE-2024-45505 | Apache HertzBeat up to 1.6.0 command injection

CVE-2023-37866 | Crocoblock JetFormBuilder Plugin up to 3.0.8 on WordPress privileges management