concrete5/concrete5 vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2022-43692Mediumconcrete5/concrete5: Concrete CMS vulnerable to Reflected Cross-site ScriptingCVE-2022-43694Mediumconcrete5/concrete5: Concrete CMS vulnerable to Reflected Cross-site Scripting via image manipulation libraryCVE-2022-43686Mediumconcrete5/concrete5: Concrete CMS vulnerable to Uncontrolled Resource Consumption leading to DoSCVE-2022-43968Mediumconcrete5/concrete5: Concrete CMS vulnerable to Reflected Cross-Site Scripting via dashboard iconsCVE-2022-43967Mediumconcrete5/concrete5: Concrete CMS vulnerable to Cross-site Scripting via multilingual reportCVE-2022-43691Mediumconcrete5/concrete5: Concrete CMS vulnerable to Cleartext Transmission of Sensitive InformationCVE-2022-43687Mediumconcrete5/concrete5: Concrete CMS vulnerable to Session FixationCVE-2022-43688Mediumconcrete5/concrete5: Concrete CMS vulnerable to Cross-site ScriptingCVE-2022-43689Mediumconcrete5/concrete5: Concrete CMS vulnerable to XML External EntityCVE-2022-43690Mediumconcrete5/concrete5: Concrete CMS vulnerable to Improper AuthenticationCVE-2022-43693Highconcrete5/concrete5: Concrete CMS vulnerable to Cross-site Request ForgeryCVE-2021-28145Mediumconcrete5/concrete5: Concrete CMS Cross-site Scripting via Survey BlocksCVE-2015-3989Lowconcrete5/concrete5: concrete5 vulnerable to Cross-site ScriptingCVE-2012-5181Mediumconcrete5/concrete5: Concrete5 Vulnerable to Cross-Site Scripting (XSS)CVE-2017-7725Mediumconcrete5/concrete5: Concrete CMS vulnerable to cross-site scripting (XSS)CVE-2021-22954Highconcrete5/concrete5: Cross Site Request Forgery in concrete5/concrete5 CVE-2020-14961Mediumconcrete5/concrete5: Unrestricted Uploads in Concrete5CVE-2020-11476Highconcrete5/concrete5: Unrestricted Uploads in Concrete5CVE-2021-22958Highconcrete5/concrete5: Server-Side Request Forgery vulnerability in concrete5

Stop the waste.
Protect your environment with Kodem.