6 matches found
PT-2025-3896 · Opencart · Blog Botz For Journal Theme
Name of the Vulnerable Software and Affected Versions: Blog Botz for Journal Theme version 1.0 on OpenCart Description: A critical vulnerability was found in Blog Botz for Journal Theme on OpenCart, affecting an unknown part of the file /index.php?route=extension/module/blog add. The manipulation...
Subrion Cross-site scripting (XSS) vulnerability
Cross-site scripting XSS vulnerability in Subrion CMS allows remote attackers to inject arbitrary web script or HTML via the body to blog/add/, a different vulnerability than CVE-2017-6069...
CVE-2017-10795
Cross-site scripting XSS vulnerability in Subrion CMS 4.1.4 allows remote attackers to inject arbitrary web script or HTML via the body to blog/add/, a different vulnerability than CVE-2017-6069...
Subrion CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-04652)
Subrion CMS is a PHP-based content management system CMS developed by the Subrion team. The system can be integrated into a website and supports a wide range of extensions plug-ins and more. A cross-site request forgery vulnerability exists in the admin/blog/add/ URI in Subrion CMS version 4.0.5...
Subrion CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-04651)
Subrion CMS is a PHP-based content management system CMS developed by the Subrion team. The system can be integrated into a website and supports a wide range of extensions plug-ins and more. A cross-site request forgery vulnerability exists in admin/blog/add/URI in Subrion CMS version 4.0.5.10. A...
CVE-2017-6069
Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter...