Vulnerability Allowing Full Server Takeover Found in Concrete5 CMS

A remote code execution (RCE) vulnerability addressed recently in Concrete5 exposed numerous websites to attacks, Edgescan reports.

A point and click, open-source content management system, Concrete5 allows users create websites at ease and is used by many high-profile entities worldwide, including BASF, GlobalSign, REC, the U.S. Army, and more.

Story added 18. August 2020, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

Recent Windows Zero-Day Targeted Embassies, Used Syria-related Email
Kaspersky Lab Uncovers Third Windows Zero Day Exploit in Three Months
In Other News: US Hacking China, Unfixed PowerShell Gallery Flaws, Free Train Tickets
Microsoft issues fix for IE hole; full update coming Friday
Analyzing a Patch of a Virtual Machine Escape on VMware
Black Hat draws world hacking gang – and Apple – to Sin City
Reports Outline Current Threat Landscape
Patch Tuesday February 2012
Stealing advanced nations’ Mac malware isn’t hard. Here’s how one hacker did it
Discovery Of ‘Reset’ Button For Body Clocks Could Help Us Deal With Jet Lag

Vulnerability Allowing Full Server Takeover Found in Concrete5 CMS

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts