Lucene search
China National Vulnerability DatabaseCNVD-2021-94048HistoryOct 21, 2021 - 12:00 a.m.
Portlandlabs Concrete5 Cross-Site Scripting Vulnerability
2021-10-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.001 Low
EPSS
Percentile
43.0%
Portlandlabs Concrete5 is an open source content management system (CMS) from PortlandLabs, Inc. A cross-site scripting vulnerability exists in Portlandlabs Concrete5 crete5-legacy 5.6.4.0 and prior versions, which can be exploited by remote attackers to “cID” parameter to inject arbitrary web script or HTML.
| CPE | Name | Operator | Version |
|---|---|---|---|
| PortlandLabs Concrete5 crete5-legacy <= 5. | eq | 6.4.0 |
Related
cve
cve
CVE-2021-41463
2021-10-01 16:15:08
osv
osv
CVE-2021-41463
2021-10-01 16:15:08
cvelist
cvelist
CVE-2021-41463
2021-10-01 15:42:15
nvd
nvd
CVE-2021-41463
2021-10-01 16:15:08
prion
prion
Cross site scripting
2021-10-01 16:15:00