Vulnerability CVE-2023-28477
Published: 2023-04-28

Description:
Concrete CMS (previously concrete5) before 9.2 is vulnerable to stored XSS on API Integrations via the name parameter.

 References:
https://concretecms.com
https://www.concretecms.org/about/project-news/security/concrete-cms-security-advisory-2023-04-20
Copyright 2026, cxsecurity.com

 

Back to Top