CVE-2023-44760 Information

Description

Multiple Cross Site Scripting (XSS) vulnerabilities in Concrete CMS v.9.2.1 allow an attacker to execute arbitrary code via a crafted script to the Header and Footer Tracking Codes of the SEO & Statistics.

Reference

https://github.com/sromanhu/ConcreteCMS-Stored-XSS—TrackingCodes