Shodan
Vulnerabilities
Vulnerable Software
Concretecms:  >> Concrete Cms  >> 5.6.1  Security Vulnerabilities
CVE-2014-5108
Cross-site scripting (XSS) vulnerability in single_pages\download_file.php in concrete5 before 5.6.3 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header to index.php/download_file.
CVSS Score
4.3
EPSS Score
0.004
Published
2014-07-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved