CVE-2023-48651

Publication date

2023-12-25 00:00:00

Family

mitre

State

PUBLISHED

Description

Concrete CMS 9 before 9.2.3 is vulnerable to Cross Site Request Forgery (CSRF) at /ccm/system/dialogs/file/delete/1/submit.