Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

56 matches found

Nuclei
Nucleiadded 3 days ago49 views

Subrion CMS <4.1.5.10 - SQL Injection

Subrion CMS before 4.1.5.10 has a SQL injection vulnerability in /front/search.php via the $GET array. id: CVE-2017-11444 info: name: Subrion CMS 4.1.5.10 - SQL Injection author: dwisiswant0 severity: critical description: "Subrion CMS before 4.1.5.10 has a SQL injection vulnerability in...

9.8CVSS7.4AI score0.82165EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-1393

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0164EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2022-1496

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.01709EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/05/22 11:54 p.m.10 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6.1CVSS5.7AI score0.00673EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 3:47 p.m.5 views

CVE-2020-18326

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS7.2AI score0.0164EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2025/05/22 3:46 p.m.7 views

CVE-2020-18325

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

6.1CVSS5.9AI score0.01709EPSS
Exploits1
0day.today
0day.todayadded 2023/03/28 12:0 a.m.213 views

Subrion CMS 4.2.1 - Stored Cross-Site Scripting Vulnerability

Exploit Title: Subrion CMS 4.2.1 - Stored Cross-Site Scripting XSS Exploit Author: Sinem Şahin Vendor Homepage: https://intelliants.com/ Version: 4.2.1 Tested on: Windows & XAMPP == Tutorial http://HOST/panel/fields/add 2- Write XSS Payload into the tooltip value of the field add page. 3- Press...

6.8AI score
Exploits0
Packet Storm
Packet Stormadded 2023/03/28 12:0 a.m.194 views

Subrion CMS 4.2.1 Cross Site Scripting

Exploit Title: Subrion CMS 4.2.1 - Stored Cross-Site Scripting XSS Date: 2022-08-10 Exploit Author: Sinem Şahin Vendor Homepage: https://intelliants.com/ Version: 4.2.1 Tested on: Windows & XAMPP == Tutorial http://HOST/panel/fields/add 2- Write XSS Payload into the tooltip value of the field add...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2023/03/28 12:0 a.m.235 views

Subrion CMS 4.2.1 - Stored Cross-Site Scripting (XSS)

Exploit Title: Subrion CMS 4.2.1 - Stored Cross-Site Scripting XSS Date: 2022-08-10 Exploit Author: Sinem Şahin Vendor Homepage: https://intelliants.com/ Version: 4.2.1 Tested on: Windows & XAMPP == Tutorial http://HOST/panel/fields/add 2- Write XSS Payload into the tooltip value of the field add...

7.4AI score
Exploits0
Veracode
Veracodeadded 2022/11/10 3:28 a.m.16 views

Cross-Site Scripting (XSS)

intelliants/subrion is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitization in admin-controllable input caused by the assignValues function of fields.php, which allows an attacker to inject and execute malicious HTML and script code into the web site via the...

6.1CVSS6.1AI score0.00673EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2022/11/09 4:15 p.m.10 views

CVE-2022-43120

A cross-site scripting XSS vulnerability in the /panel/fields/add component of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Field default value text field...

6.1CVSS5.9AI score
Exploits0References1
OSV
OSVadded 2022/11/09 4:15 p.m.10 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prionadded 2022/11/09 4:15 p.m.11 views

Cross site scripting

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

5.8CVSS5.9AI score0.00673EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2022/11/09 12:0 a.m.5 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

5.9AI score0.00673EPSS
Exploits1References1
Cvelist
Cvelistadded 2022/11/09 12:0 a.m.14 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6AI score0.00673EPSS
Exploits1References1
CVE
CVEadded 2022/11/09 12:0 a.m.74 views

CVE-2022-43120

Consolidated details across multiple sources confirm a cross-site scripting (XSS) vulnerability in Subrion CMS v4.2.1, specifically in the /panel/fields/add component. The vulnerability allows an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload placed into the Fi...

6.1CVSS5.8AI score0.00626EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2022/11/09 12:0 a.m.3 views

CVE-2022-43120

A cross-site scripting XSS vulnerability in the /panel/fields/add component of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Field default value text field...

5.9AI score0.00626EPSS
Exploits1References1
Veracode
Veracodeadded 2022/06/13 8:40 a.m.18 views

Cross-Site Scripting (XSS)

intelliants/subrion is vulnerable to cross-site scripting. The vulnerability exists due to lack of validations when editing a blog entry which allows an attacker to modify the name of the uploaded images and execute arbitrary javascript...

5.4CVSS3AI score0.00206EPSS
Exploits1References2Affected Software1
OSV
OSVadded 2022/03/05 12:0 a.m.18 views

GHSA-9CC3-5W85-PXVX Cross Site Request Forgery in intelliants/subrion

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS8.8AI score0.0164EPSS
Exploits1References3
Github Security Blog
Github Security Blogadded 2022/03/05 12:0 a.m.18 views

Cross-site Scripting in intelliants/subrion

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

6.1CVSS5.8AI score0.01709EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder