[MEDIUM] Concrete CMS vulnerable to Cross-site Scripting

PKSA-qmx5-45c3-cqz1 CVE-2022-43688 GHSA-9jc5-9wh5-mc36

Affected package: concrete5/concrete5

Affected version: >=9.0.0,<9.1.3|<8.5.10

Reported by:
GitHub