CVE-2026-8204 | Concrete CMS up to 9.5.0 Calendar Event authorization
A vulnerability categorized as problematic has been discovered in Concrete CMS up to 9.5.0. The impacted element is an unknown function of the component Calendar Event Handler. Executing a manipulation can lead to authorization bypass.
This vulnerability is handled as CVE-2026-8204. The attack can be executed remotely. There is not any exploit available.