Concrete CMS (previously concrete5) versions 8.5.12 and below, and versions 9.0 through 9.1.3 is vulnerable to Reflected XSS on the Reply form because msgID was not sanitized.
{ "versions": [ { "introduced": "0" }, { "fixed": "9.2.0" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28475.json"