CVE-2022-43693

Published: 2022-11-14T17:15Z

Last Modified: 2024-11-21T07:27Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Concrete CMS is vulnerable to CSRF due to the lack of "State" parameter for external Concrete authentication service for users of Concrete who use the "out of the box" core OAuth. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt