[MEDIUM] Concrete CMS Stored Cross-site Scripting vulnerability

PKSA-t8dh-g3jy-xp44 CVE-2024-4350 GHSA-q5wx-m95r-4cgc

Affected package: concrete5/concrete5

Affected version: >=9.0.0RC1,<9.3.3|<8.5.18

Reported by:
GitHub