Find real vulnerabilities before they ship
Vulnerability Database › packagist › CVE-2023-28820
Concrete CMS (previously concrete5) before 9.1 is vulnerable to stored XSS in RSS Displayer via the href attribute because the link element input was not sanitized.
Base Score