concrete5/concrete5 vulnerabilities

concrete5 open source CMS

Latest version: 8.5.4

Licenses detected

  • license: MIT >= 0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the concrete5/concrete5 package. This does not include vulnerabilities belonging to this package’s dependencies.

Report new vulnerabilities
Vulnerability Vulnerable versions Snyk patch Published
  • M
Improper Input Validation
<8.5.3 Not available 22 Jun, 2020
  • H
Server Side Request Forgery (SSRF)
<8.3.0 Not available 23 Jul, 2018