CVE-2022-50807 | PortlandLabs Concrete CMS 9.1.3 Requests xpath injection (Exploit 51144 / EDB-51144)

A vulnerability has been found in PortlandLabs Concrete CMS 9.1.3 and classified as critical. The affected element is an unknown function of the component Requests Handler. The manipulation leads to improper neutralization of data within xpath expressions.

This vulnerability is listed as CVE-2022-50807. The attack may be initiated remotely. In addition, an exploit is available.VulDB Recent EntriesRead More