제출 #522414: Concretecms 9.3.9 XSS정보

제목Concretecms 9.3.9 XSS
설명ConcreteCMS v9.3.9 suffers from a Stored Cross-Site Scripting (XSS) vulnerability in the Navigation field、Title Text field、Description source field when adding a FAQ block. This vulnerability allows attackers to cheat other users by injecting malicious scripts into web pages viewed by other users.
원천⚠️ https://github.com/yaowenxiao721/Poc/blob/main/Concretecms/Concretecms-poc2.md
사용자
 yaowenxiao (UID 82929)
제출2025. 03. 18. AM 10:21 (1 년도 ago)
모더레이션2025. 03. 30. AM 09:16 (12 days later)
상태수락
VulDB 항목302016 [ConcreteCMS 까지 9.3.9 FAQ Block save Navigation/Title Text/Description Source 크로스 사이트 스크립팅]
포인트들16

이전개요다음

Want to know what is going to be exploited?

We predict KEV entries!