A vulnerability was found in Concrete CMS up to 9.5.0 and classified as problematic. This impacts an unknown function. Executing a manipulation can lead to authorization bypass.
This vulnerability is registered as CVE-2026-8337. It is possible to launch the attack remotely. No exploit is available.
