Concrete CMS (previously concrete5)... CVE-2023-28820

- AV AC AU C I A
发布: 2023-04-28
修订: 2025-01-31

Concrete CMS (previously concrete5) before 9.1 is vulnerable to stored XSS in RSS Displayer via the href attribute because the link element input was not sanitized.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息