Subrion CMS is a PHP-based content management system (CMS) from the Subrion team. The system can be integrated into websites and supports multiple extension plugins, etc. A security vulnerability exists in Subrion CMS 4.2.1, which allows a remote, unauthenticated, malicious user to send authorization requests to victims via the Member Administrator feature and successfully create arbitrary administrator users. No detailed vulnerability details are currently available.