cbcvebase.

Concretecms Concrete Cms vulnerabilities

153 known vulnerabilities affecting concretecms/concrete_cms.

Total CVEs
153
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL6HIGH37MEDIUM109LOW1

Vulnerabilities

Page 2 of 8
CVE-2021-40098P3CRITICALCVSS 9.8≤ 8.5.52021-09-27
CVE-2021-40098 [CRITICAL] CWE-22 CVE-2021-40098: An issue was discovered in Concrete CMS through 8.5.5. Path Traversal leading to RCE via external fo An issue was discovered in Concrete CMS through 8.5.5. Path Traversal leading to RCE via external form by adding a regular expression.
nvd
CVE-2021-36766P3HIGHCVSS 7.2fixed in 8.5.62021-07-30
CVE-2021-36766 [HIGH] CWE-502 CVE-2021-36766: Concrete5 through 8.5.5 deserializes Untrusted Data. The vulnerable code is located within the contr Concrete5 through 8.5.5 deserializes Untrusted Data. The vulnerable code is located within the controllers/single_page/dashboard/system/environment/logging.php Logging::update_logging() method. User input passed through the logFile request parameter is not properly sanitized before being used in a call to the file_exists() PHP function. This can be ex
nvd
CVE-2026-8428P3HIGHCVSS 8.8fixed in 9.5.12026-05-21
CVE-2026-8428 [HIGH] CWE-352 CVE-2026-8428: Concrete CMS 9.5.0 and below emits a CSRF token in the local_available_update.php view ($token->outp Concrete CMS 9.5.0 and below emits a CSRF token in the local_available_update.php view ($token->output('do_update')) but the corresponding do_update() method in concrete/controllers/single_page/dashboard/system/update/update.php never calls $this->token->validate('do_update'). The form is rendered as a POST form, meaning the token reaches the browser, b
nvd
CVE-2026-8410P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8410 [HIGH] CWE-352 CVE-2026-8410: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/logs/bulk/delete. The The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8409P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8409 [HIGH] CWE-352 CVE-2026-8409: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/logs/delete. The The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8416P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8416 [HIGH] CWE-352 CVE-2026-8416: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/backend/file addFavoriteFolder($id). The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8427P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8427 [HIGH] CWE-352 CVE-2026-8427: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/backend/file removeFavoriteFolder($id). The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2021-40099P3HIGHCVSS 7.2≤ 8.5.52021-09-24
CVE-2021-40099 [HIGH] CVE-2021-40099: An issue was discovered in Concrete CMS through 8.5.5. Fetching the update json scheme over HTTP lea An issue was discovered in Concrete CMS through 8.5.5. Fetching the update json scheme over HTTP leads to remote code execution.
nvd
CVE-2025-8573P4MEDIUMCVSS 4.8PoC≥ 9.0, < 9.4.32025-08-05
CVE-2025-8573 [MEDIUM] CWE-20 CVE-2025-8573: Concrete CMS versions 9 through 9.4.2 are vulnerable to Stored XSS from Home Folder on Members Dashb Concrete CMS versions 9 through 9.4.2 are vulnerable to Stored XSS from Home Folder on Members Dashboard page. Version 8 was not affected. A rogue admin could set up a malicious folder containing XSS to which users could be directed upon login. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.0 with vector CVSS:4.0/AV:N/AC
nvd
CVE-2026-8411P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8411 [HIGH] CWE-352 CVE-2026-8411: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/delete. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8432P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8432 [HIGH] CWE-352 CVE-2026-8432: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/backend/file star(). The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8414P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8414 [HIGH] CWE-352 CVE-2026-8414: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/event/duplicate. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8434P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8434 [HIGH] CWE-352 CVE-2026-8434: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/backend/file rescanMultiple(). The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8433P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8433 [HIGH] CWE-352 CVE-2026-8433: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/backend/file rescan(). The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8415P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8415 [HIGH] CWE-352 CVE-2026-8415: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/express/association/reorder. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2022-43693P3HIGHCVSS 8.8fixed in 8.5.10≥ 9.0.0, ≤ 9.1.22022-11-14
CVE-2022-43693 [HIGH] CWE-352 CVE-2022-43693: Concrete CMS is vulnerable to CSRF due to the lack of "State" parameter for external Concrete authen Concrete CMS is vulnerable to CSRF due to the lack of "State" parameter for external Concrete authentication service for users of Concrete who use the "out of the box" core OAuth.
nvd
CVE-2026-8413P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8413 [HIGH] CWE-352 CVE-2026-8413: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controlle Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/design. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2026-8412P3HIGHCVSS 8.8≥ 9.0.0, < 9.5.12026-05-21
CVE-2026-8412 [HIGH] CWE-352 CVE-2026-8412: Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controll Concrete CMS 9 before 9.5.0 is vulnerable to Cross Site Request Forgery (CSRF) at concrete/controllers/dialog/page/bulk/cache. The Concrete CMS security team gave this vulnerability a CVSS v.4.0 score of 2.3 with vector CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N. Thanks Yonatan Drori (Tenzai) for reporting.
nvd
CVE-2021-40103P3HIGHCVSS 7.5≤ 8.5.52021-09-27
CVE-2021-40103 [HIGH] CWE-22 CVE-2021-40103: An issue was discovered in Concrete CMS through 8.5.5. Path Traversal can lead to Arbitrary File Rea An issue was discovered in Concrete CMS through 8.5.5. Path Traversal can lead to Arbitrary File Reading and SSRF.
nvd
CVE-2021-22967P3HIGHCVSS 7.5fixed in 8.5.72021-11-19
CVE-2021-22967 [HIGH] CWE-639 CVE-2021-22967: In Concrete CMS (formerly concrete 5) below 8.5.7, IDOR Allows Unauthenticated User to Access Restri In Concrete CMS (formerly concrete 5) below 8.5.7, IDOR Allows Unauthenticated User to Access Restricted Files If Allowed to Add Message to a Conversation.To remediate this, a check was added to verify a user has permissions to view files before attaching the files to a message in "add / edit message”.Concrete CMS security team gave this a CVSS v3.1 s
nvd
Concretecms Concrete Cms vulnerabilities | cvebase