3 matches found
CVE-2019-7356
Subrion CMS v4.2.1 allows XSS via the panel/phrases/ VALUE parameter...
CVE-2019-7356
Subrion CMS v4.2.1 allows XSS via the panel/phrases/ VALUE parameter...
CVE-2019-7356
Subrion CMS v4.2.1 is affected by a cross-site scripting (XSS) vulnerability exploitable via the panel/phrases/ VALUE parameter. Root cause: lack of proper validation of client-side data in the web application. Impact: client-side JS can be injected, potentially compromising user input handling a...