Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-62465
HistoryJul 21, 2021 - 12:00 a.m.

Portlandlabs Concrete5 code issue vulnerability

2021-07-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
4

0.013 Low

EPSS

Percentile

86.1%

JSON

Portlandlabs Concrete5 is an open source content management system (CMS) from PortlandLabs (Portlandlabs), U.S. Portlandlabs concrete5 suffers from a code issue vulnerability that stems from insecure input validation. An attacker could exploit this vulnerability to pass specially designed data to the application and execute arbitrary PHP code on the target system.

CPENameOperatorVersion
portlandlabs concrete5le8.5.5

Related

prion 1
cve 1
veracode 1
openvas 1
cvelist 1
nvd 1
d0znpp 1
hackerone 1
prion
prion
Code injection
2021-07-30 14:15:00
cve
cve
CVE-2021-36766
2021-07-30 14:15:18
veracode
veracode
Arbitrary Code Execution
2021-08-02 07:37:15
openvas
openvas
Concrete5 <= 8.5.5 Phar Deserialization Vulnerability
2021-08-02 00:00:00
cvelist
cvelist
CVE-2021-36766
2021-07-27 05:38:42
nvd
nvd
CVE-2021-36766
2021-07-30 14:15:18
d0znpp
d0znpp
A8: Insecure Deserialization ❗️ — Top 10 OWASP 2017
2021-09-28 06:31:50
hackerone
hackerone
Concrete CMS: Phar Deserialization Vulnerability via Logging Settings
2020-12-20 17:38:21

0.013 Low

EPSS

Percentile

86.1%

JSON
Related for CNVD-2021-62465
prion1cve1veracode1openvas1cvelist1nvd1d0znpp1hackerone1