3 matches found
CVE-2021-41502
An issue was discovered in Subrion CMS v4.2.1 There is a stored cross-site scripting XSS vulnerability that can execute malicious JavaScript code by modifying the name of the uploaded image, closing the html tag, or adding the onerror attribute...
CVE-2021-41502
An issue was discovered in Subrion CMS v4.2.1 There is a stored cross-site scripting XSS vulnerability that can execute malicious JavaScript code by modifying the name of the uploaded image, closing the html tag, or adding the onerror attribute...
CVE-2021-41502
Subrion CMS v4.2.1 contains a stored XSS vulnerability. The flaw allows injecting malicious JavaScript by altering the name of an uploaded image, closing an HTML tag, or adding an onerror attribute, enabling script execution. Connected documents confirm the same issue across multiple feeds (inclu...