concrete-cms Concrete5-CMS RCE (CVE-2021-22968) Affected versions 856 and 900 Full write-up at: wwwfortbridgecouk/research/multiple-vulnerabilities-in-concrete-cms-part1-rce/ Steps to reproduce upload testphp somewhere accessible for the vulnerable server you need a valid upload request in requesttxt you need to start scriptpy as a Turbo Intruder script - thi