Lucene search
China National Vulnerability DatabaseCNVD-2021-94045HistoryOct 21, 2021 - 12:00 a.m.
Portlandlabs Concrete5 Cross-Site Scripting Vulnerability (CNVD-2021-94045)
2021-10-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
0.001 Low
EPSS
Percentile
43.0%
Portlandlabs Concrete5 is an open source content management system (CMS) from PortlandLabs, Inc. A cross-site scripting vulnerability exists in Portlandlabs Concrete5 crete5-legacy 5.6.4.0 and prior versions, which can be exploited by remote attackers to inject arbitrary Web script or HTML via the “ctID” parameter to inject arbitrary web script or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| PortlandLabs Concrete5 crete5-legacy <= 5. | eq | 6.4.0 |
Related
osv
osv
CVE-2021-41462
2021-10-01 16:15:07
cvelist
cvelist
CVE-2021-41462
2021-10-01 15:42:15
prion
prion
Cross site scripting
2021-10-01 16:15:00
cve
cve
CVE-2021-41462
2021-10-01 16:15:07
nvd
nvd
CVE-2021-41462
2021-10-01 16:15:07