{
  "id": "CVE-2023-44765",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-10-06T13:15:12.923",
  "lastModified": "2023-10-06T13:17:35.473",
  "vulnStatus": "Undergoing Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "A Cross Site Scripting (XSS) vulnerability in Concrete CMS v.9.2.1 allows an attacker to execute arbitrary code via a crafted script to Plural Handle of the Data Objects from System & Settings."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/sromanhu/ConcreteCMS-Stored-XSS---Associations",
      "source": "cve@mitre.org"
    }
  ]
}