0.001 Low
EPSS
Percentile
50.3%
Concrete5 is vulnerable to cross-site scripting (XSS) attacks. These attacks can be performed through private messages or other vectors.
www.securityfocus.com/bid/74699
documentation.concrete5.org/developers/background/version-history/5-7-4-release-notes
www.concrete5.org/documentation/developers/5.7/background/version-history/5-7-4-release-notes/