Количество 2
Количество 2
CVE-2021-28145
почти 5 лет назад
Concrete CMS (formerly concrete5) before 8.5.5 allows remote authenticated users to conduct XSS attacks via a crafted survey block. This requires at least Editor privileges.
CVSS3: 5.4
EPSS: Низкий
GHSA-7388-7vq2-m4f4
больше 3 лет назад
Concrete CMS Cross-site Scripting via Survey Blocks
CVSS3: 5.4
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-28145 Concrete CMS (formerly concrete5) before 8.5.5 allows remote authenticated users to conduct XSS attacks via a crafted survey block. This requires at least Editor privileges. | CVSS3: 5.4 | 0% Низкий | почти 5 лет назад |
| GHSA-7388-7vq2-m4f4 Concrete CMS Cross-site Scripting via Survey Blocks | CVSS3: 5.4 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20