Lucene search
China National Vulnerability DatabaseCNVD-2021-76081HistorySep 29, 2021 - 12:00 a.m.
PortlandLabs Concrete CMS Path Traversal Vulnerability (CNVD-2021-76081)
2021-09-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
portlandlabs
path traversal
content management system
user input
vulnerability
arbitrary file reading
ssrf
security
EPSS
0.001
Percentile
22.7%
PortlandLabs Concrete Cms is a team-oriented open source content management system from PortlandLabs, Inc. A path traversal vulnerability exists in PortlandLabs Concrete CMS, which stems from the productβs failure to securely handle user input data. An attacker could cause arbitrary file reading and SSRF through this vulnerability.
Related
cvelist
cvelist
CVE-2021-40109
2021-09-27 12:04:54
nvd
nvd
CVE-2021-40109
2021-09-27 13:15:08
prion
prion
Server side request forgery (ssrf)
2021-09-27 13:15:00
cve
cve
CVE-2021-40109
2021-09-27 13:15:08
openvas
openvas
Concrete CMS < 8.5.6 Multiple Vulnerabilities
2021-10-05 00:00:00