A Server Side Request Forgery (SSRF) vulnerability in tools/files/importers/remote.php in concrete5 8.2.0 can lead to attacks on the local network and mapping of the internal network, because of URL functionality on the File Manager page.
{ "versions": [ { "introduced": "0" }, { "last_affected": "8.2.0-NA" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-13790.json"