PortlandLabs Concrete CMS is a team-oriented open source content management system from PortlandLabs, Inc. A cross-site scripting vulnerability exists in PortlandLabs Concrete CMS, which originates from a lack of data validation filtering of user-supplied data and output in /dashboard/reports/logs/view. The vulnerability is caused by a lack of data validation filtering of user-supplied data and output in /dashboard/reports/logs/view.
CPE | Name | Operator | Version |
---|---|---|---|
Portland Labs Concrete CMS | le | 8.5.7 | |
Portland Labs Concrete CMS >=9.0.0, | le | 9.0.2 |