Vulnerabilities > Conceptintermedia

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-28	CVE-2024-3800	Cross-site Scripting vulnerability in Conceptintermedia S@M CMS Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in requested file names. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears. network low complexity conceptintermedia CWE-79	6.1
2024-06-28	CVE-2024-3801	Cross-site Scripting vulnerability in Conceptintermedia S@M CMS Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in one of GET header parameters. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears. network low complexity conceptintermedia CWE-79	6.1
2024-06-28	CVE-2024-3816	SQL Injection vulnerability in Conceptintermedia S@M CMS Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to a blind SQL Injection executed using the search bar. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears. network low complexity conceptintermedia CWE-89 critical	9.8

Vulnerabilities > Conceptintermedia {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Conceptintermedia"}]}