Lucene search
China National Vulnerability DatabaseCNVD-2021-94042HistoryNov 23, 2021 - 12:00 a.m.
PortlandLabs Concrete Cms Code Issue Vulnerability (CNVD-2021-94042)
2021-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
32.2%
PortlandLabs Concrete Cms is an open source team-oriented content management system from PortlandLabs, Inc. PortlandLabs Concrete CMS is vulnerable to a code issue that could be exploited by attackers to obtain a Cloud IAAS (AWS) IAM key.
| CPE | Name | Operator | Version |
|---|---|---|---|
| portland labs concrete cms | lt | 8.5.7 |
Related
nvd
nvd
CVE-2021-22969
2021-11-19 19:15:08
osv
osv
Server-Side Request Forgery in Concrete CMS
2021-11-23 18:18:35
prion
prion
Design/Logic Flaw
2021-11-19 19:15:00
github
github
Server-Side Request Forgery in Concrete CMS
2021-11-23 18:18:35
veracode
veracode
Server-Side Request Forgery (SSRF)
2021-11-24 16:29:47
cvelist
cvelist
CVE-2021-22969
2021-11-19 18:08:30
hackerone
hackerone
Concrete CMS: SSRF mitigation bypass using DNS Rebind attack
2021-10-13 13:27:58
cve
cve
CVE-2021-22969
2021-11-19 19:15:08
openvas
openvas
Concrete CMS < 8.5.7 Multiple Vulnerabilities
2021-11-22 00:00:00