Description
Cross-site scripting (XSS) vulnerability in concrete5 Japanese 5.5.1 through 5.5.2.1 and concrete5 English 5.5.0 through 5.6.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Cookie Bar Cross-Site Scripting (1.8.8)
WordPress Plugin Spotlight Social Feeds [Block, Shortcode, and Widget] Cross-Site Scripting (1.4.2)
Plone CMS Missing Authentication for Critical Function Vulnerability (CVE-2020-35190)
WordPress Plugin AdKlick Advertising Management Unspecified Vulnerability (1.1)
WordPress Plugin IMPress for IDX Broker Multiple Vulnerabilities (2.6.1)