Information from concrete5 japan Inc.

Vulnerability ID:JVN#65458431
Title:concrete5 vulnerable to cross-site scripting
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.