Vulnerabilities > Concretecms > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-30118 Cross-site Scripting vulnerability in Concretecms Concrete CMS
Title for CVE: XSS in /dashboard/system/express/entities/forms/save_control/[GUID]: old browsers only.Description: When using Internet Explorer with the XSS protection disabled, editing a form control in an express entities form for Concrete 8.5.7 and below as well as Concrete 9.0 through 9.0.2 can allow XSS.
4.3
2022-06-24 CVE-2022-30119 Cross-site Scripting vulnerability in Concretecms Concrete CMS
XSS in /dashboard/reports/logs/view - old browsers only.
4.3
2022-06-24 CVE-2022-30120 Cross-site Scripting vulnerability in Concretecms Concrete CMS
XSS in /dashboard/blocks/stacks/view_details/ - old browsers only.
4.3
2022-02-09 CVE-2021-22954 Cross-Site Request Forgery (CSRF) vulnerability in Concretecms Concrete CMS
A cross-site request forgery vulnerability exists in Concrete CMS <v9 that could allow an attacker to make requests on behalf of other users.
6.8
2021-11-30 CVE-2021-40101 Incorrect Permission Assignment for Critical Resource vulnerability in Concretecms Concrete CMS
An issue was discovered in Concrete CMS before 8.5.7.
network
low complexity
concretecms CWE-732
6.5
2021-11-19 CVE-2021-22951 Authorization Bypass Through User-Controlled Key vulnerability in Concretecms Concrete CMS
Unauthorized individuals could view password protected files using view_inline in Concrete CMS (previously concrete 5) prior to version 8.5.7.
network
low complexity
concretecms CWE-639
5.0
2021-11-19 CVE-2021-22966 Incorrect Authorization vulnerability in Concretecms Concrete CMS
Privilege escalation from Editor to Admin using Groups in Concrete CMS versions 8.5.6 and below.
network
low complexity
concretecms CWE-863
6.5
2021-11-19 CVE-2021-22967 Authorization Bypass Through User-Controlled Key vulnerability in Concretecms Concrete CMS
In Concrete CMS (formerly concrete 5) below 8.5.7, IDOR Allows Unauthenticated User to Access Restricted Files If Allowed to Add Message to a Conversation.To remediate this, a check was added to verify a user has permissions to view files before attaching the files to a message in "add / edit message”.Concrete CMS security team gave this a CVSS v3.1 score of 4.3 AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NCredit for discovery Adrian H
network
low complexity
concretecms CWE-639
5.0
2021-11-19 CVE-2021-22969 Server-Side Request Forgery (SSRF) vulnerability in Concretecms Concrete CMS
Concrete CMS (formerly concrete5) versions below 8.5.7 has a SSRF mitigation bypass using DNS Rebind attack giving an attacker the ability to fetch cloud IAAS (ex AWS) IAM keys.To fix this Concrete CMS no longer allows downloads from the local network and specifies the validated IP when downloading rather than relying on DNS.Discoverer: Adrian Tiron from FORTBRIDGE ( https://www.fortbridge.co.uk/ )The Concrete CMS team gave this a CVSS 3.1 score of 3.5 AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N .
network
low complexity
concretecms CWE-918
5.0
2021-11-19 CVE-2021-22970 Server-Side Request Forgery (SSRF) vulnerability in Concretecms Concrete CMS
Concrete CMS (formerly concrete5) versions 8.5.6 and below and version 9.0.0 allow local IP importing causing the system to be vulnerable toa.
network
low complexity
concretecms CWE-918
5.0