All 2 CVE vulnerabilities found in Concrete CMS , with AI-generated Chinese analysis, references, and POCs.
Vendor: Concrete CMS
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-1245 | Concrete CMS version 9 before 9.2.5 is vulnerable to stored XSS in file tags and description attributes CWE-20 | 2.4 | Low | 2024-02-09 |
| CVE-2024-1246 | Concrete CMS in version 9 before 9.2.5 is vulnerable to reflected XSS via the Image URL Import Feature CWE-20 | 2.0 | Low | 2024-02-09 |
All 2 known CVE vulnerabilities affecting Concrete CMS with full Chinese analysis, references, and POCs where available.