Top reports from concrete5 program at HackerOne:
- Remote Code Execution (Reverse Shell) - File Manager to concrete5 - 111 upvotes, $0
- Time-base SQL Injection in Search Users to concrete5 - 54 upvotes, $0
- Password Reset link hijacking via Host Header Poisoning to concrete5 - 51 upvotes, $0
- SVG file that HTML Included is able to upload via File Manager to concrete5 - 25 upvotes, $0
- XSS in select attribute options to concrete5 - 20 upvotes, $0
- SSRF thru File Replace to concrete5 - 17 upvotes, $0
- Reflected XSS vulnerability in Database name field on installation screen to concrete5 - 17 upvotes, $0
- 'cnvID' parameter vulnerable to Insecure Direct Object References to concrete5 - 15 upvotes, $0
- Cross Site Scripting (XSS) Stored - Private messaging to concrete5 - 15 upvotes, $0
- Remote Code Execution through Extension Bypass on Log Functionality to concrete5 - 14 upvotes, $0
- Local File Inclusion path bypass to concrete5 - 13 upvotes, $0
- Stored XSS in Headline TextControl element in Express forms [ concrete5 8.1.0 ] to concrete5 - 12 upvotes, $0
- Unauthenticated reflected XSS in preview_as_user function to concrete5 - 12 upvotes, $0
- Bypass auth.email-domains to concrete5 - 9 upvotes, $0
- Local File Inclusion Vulnerability in Concrete5 version 5.7.3.1 to concrete5 - 9 upvotes, $0
- CSRF Full Account Takeover to concrete5 - 9 upvotes, $0
- Stored XSS in Pages SEO dialog Name field (concrete5 8.1.0) to concrete5 - 9 upvotes, $0
- Stored XSS vulnerability in RSS Feeds Description field to concrete5 - 9 upvotes, $0
- Stored XSS in Private Messages 'Reply' allows to execute malicious JavaScript against any user while replying to the message which contains payload to concrete5 - 8 upvotes, $0
- HttpOnly flag not set for cookie on concrete5.org to concrete5 - 7 upvotes, $0
- Stored XSS in Express Objects - Concrete5 v8.1.0 to concrete5 - 7 upvotes, $0
- Stored XSS vulnerability in additional URLs in 'Location' dialog [Sitemap] to concrete5 - 7 upvotes, $0
- Stored XSS on Add Event in Calendar to concrete5 - 7 upvotes, $0
- Stored XSS on Add Calendar to concrete5 - 7 upvotes, $0
- Stored XSS in the file search filter to concrete5 - 7 upvotes, $0
- Stored XSS in Name field in User Groups/Group Details form to concrete5 - 6 upvotes, $0
- Unauthenticated HTML Injection Stored - ContactUs form to concrete5 - 6 upvotes, $0
- Stored XSS on express entries to concrete5 - 5 upvotes, $0
- XSS in private message to concrete5 - 4 upvotes, $0
- XSS on [/concrete/concrete/elements/dashboard/sitemap.php] to concrete5 - 4 upvotes, $0
- Stored XSS in RSS Feeds Title (Concrete5 v8.1.0) to concrete5 - 4 upvotes, $0
- XSS IN member List (Because of City Textbox) to concrete5 - 3 upvotes, $0
- FULL PATH DISCLOSUR to concrete5 - 3 upvotes, $0
- /index.php/dashboard/sitemap/explore/ Cross-site scripting to concrete5 - 2 upvotes, $0
- stored XSS in concrete5 5.7.2.1 to concrete5 - 2 upvotes, $0
- SQL injection in conc/index.php/ccm/system/search/users/submit to concrete5 - 2 upvotes, $0
- Multiple Cross Site Request Forgery Vulnerabilities in Concrete5 version 5.7.3.1 to concrete5 - 2 upvotes, $0
- Multiple Stored Cross Site Scripting Vulnerabilities in Concrete5 version 5.7.3.1 to concrete5 - 2 upvotes, $0
- Content Spoofing possible in concrete5.org to concrete5 - 2 upvotes, $0
- Administrators can add other administrators to concrete5 - 2 upvotes, $0
- page_controls_menu_js can reveal collection version of page to concrete5 - 1 upvotes, $0
- https://concrete5.org ::: HeartBleed Attack (CVE-2014-0160) to concrete5 - 1 upvotes, $0
- dashboard/pages/types [Unknown column 'Array' in 'where clause'] disclosure. to concrete5 - 1 upvotes, $0
- CONCRETE5 - path disclosure. to concrete5 - 1 upvotes, $0
- broken authentication to concrete5 - 1 upvotes, $0
- Weak random number generator used in concrete/authentication/concrete/controller.php to concrete5 - 1 upvotes, $0
- Sendmail Remote Code Execution Vulnerability in Concrete5 version 5.7.3.1 to concrete5 - 1 upvotes, $0
- No CSRF protection when creating new community points actions, and related stored XSS to concrete5 - 1 upvotes, $0
- Stored XSS in adding fileset to concrete5 - 1 upvotes, $0
- ProBlog 2.6.6 CSRF Exploit to concrete5 - 1 upvotes, $0
- Full Page Caching Stored XSS Vulnerability to concrete5 - 1 upvotes, $0
- Unsafe usage of Host HTTP header in Concrete5 version 5.7.3.1 to concrete5 - 1 upvotes, $0
- Cross-Site Scripting in getMarketplacePurchaseFrame to concrete5 - 0 upvotes, $0
- XSS in Theme Preview Tools File to concrete5 - 0 upvotes, $0
- Stored XSS in concrete5 5.7.0.4. to concrete5 - 0 upvotes, $0
- Multiple Reflected Cross Site Scripting Vulnerabilities in Concrete5 version 5.7.3.1 to concrete5 - 0 upvotes, $0
- SQL Injection Vulnerability in Concrete5 version 5.7.3.1 to concrete5 - 0 upvotes, $0
- Stored XSS on Title of Page List in edit page list to concrete5 - 0 upvotes, $0
- Stored XSS on Search Title to concrete5 - 0 upvotes, $0
- Stored XSS in Contact Form to concrete5 - 0 upvotes, $0
- Stored XSS in Title of the topic List to concrete5 - 0 upvotes, $0
- Stored XSS in title of date navigation to concrete5 - 0 upvotes, $0
- Stored XSS in Feature tile to concrete5 - 0 upvotes, $0
- Stored Xss in Feature Paragraph to concrete5 - 0 upvotes, $0
- Stored XSS in Testimonial name to concrete5 - 0 upvotes, $0
- Stored XSS in testimonial Company to concrete5 - 0 upvotes, $0
- Stored XSS in Testimonial Position to concrete5 - 0 upvotes, $0
- Stored XSS In Company URL to concrete5 - 0 upvotes, $0
- Stored XSS in Image Alt. Text to concrete5 - 0 upvotes, $0
- Stored XSS in Message to Display When No Pages Listed. to concrete5 - 0 upvotes, $0
- Stored XSS in Bio/Quote to concrete5 - 0 upvotes, $0
- Stored XSS on Blog's page Tile to concrete5 - 0 upvotes, $0
- Self Xss on File Replace to concrete5 - 0 upvotes, $0
- Multiple XSS Vulnerabilities in Concrete5 5.7.3.1 to concrete5 - 0 upvotes, $0
- No csrf protection on index.php/ccm/system/user/add_group, index.php/ccm/system/user/remove_group to concrete5 - 0 upvotes, $0
- Host Header Injection allow HiJack Password Reset Link to concrete5 - 0 upvotes, $0