Lucene search
HistoryAug 29, 2022 - 1:15 p.m.
CVE-2022-37059
cve-2022-37059
cross site scripting
xss
subrion cms 4.2.1
admin panel
nvd
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
24.9%
Cross Site Scripting (XSS) in Admin Panel of Subrion CMS 4.2.1 allows attacker to inject arbitrary code via Login Field
Affected configurations
Node
intelliantssubrion_cmsMatch4.2.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| intelliants:subrion_cms | intelliants subrion cms | eq | 4.2.1 |
Social References
More
Related
cvelist
cvelist
CVE-2022-37059
2022-08-29 12:54:51
osv
osv
Subrion CMS 4.2.1 vulnerable to cross-site scripting in admin panel
2022-08-29 20:06:52
CVE-2022-37059
2022-08-29 13:15:08
prion
prion
Cross site scripting
2022-08-29 13:15:00
nvd
nvd
CVE-2022-37059
2022-08-29 13:15:08
github
github
Subrion CMS 4.2.1 vulnerable to cross-site scripting in admin panel
2022-08-29 20:06:52
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
24.9%
Related for CVE-2022-37059