Major Security Vulnerability Discovered in CMS System Used by US Army

The content management system, Concrete5 CMS, contains a major vulnerability which has now been addressed in an updated version, according to an analysis published today by Edgescan. Edgescan senior information security consultant, Guram Javakhishvili, revealed that Concrete5 has a Remote Code Evaluation (RCE), a known security weakness which if exploited, “can lead to a full compromise of the susceptible web application and also the web server that it is hosted on.” Concrete5 is a free CMS system that creates websites and is renowned for its ease of use.

Read full article on Infosecurity

 


Date:

Categorie(s):