A Cross Site Scripting (XSS) vulnerability in Concrete CMS before 9.2.3 exists via the Name parameter during installation (aka Site of Installation or Settings).
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| concrete5/concrete5(Packagist) | 0 | N/A | N/A |
CVSS Metrics
