Vulnerability CVE-2023-44765
Published: 2023-10-06

Description:
A Cross Site Scripting (XSS) vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings.

 References:
https://github.com/sromanhu/ConcreteCMS-Stored-XSS---Associations
Copyright 2026, cxsecurity.com

 

Back to Top