Lucene search
K

39 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1393

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0219EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1496

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.0163EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2025/05/22 11:54 p.m.24 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6.1CVSS5.7AI score0.0058EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:47 p.m.9 views

CVE-2020-18326

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS7.2AI score0.0219EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/22 3:46 p.m.9 views

CVE-2020-18325

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

6.1CVSS5.9AI score0.0163EPSS
Exploits2
Veracode
Veracode
added 2022/11/10 3:28 a.m.20 views

Cross-Site Scripting (XSS)

intelliants/subrion is vulnerable to cross-site scripting. The vulnerability exists due to lack of sanitization in admin-controllable input caused by the assignValues function of fields.php, which allows an attacker to inject and execute malicious HTML and script code into the web site via the...

6.1CVSS6.1AI score0.0058EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/11/09 4:15 p.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

5.8CVSS5.9AI score0.0058EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.6 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

5.9AI score0.0058EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/11/09 12:0 a.m.40 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6AI score0.0058EPSS
Exploits1References1
CVE
CVE
added 2022/11/09 12:0 a.m.90 views

CVE-2022-43120

Consolidated details across multiple sources confirm a cross-site scripting (XSS) vulnerability in Subrion CMS v4.2.1, specifically in the /panel/fields/add component. The vulnerability allows an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload placed into the Fi...

6.1CVSS5.8AI score0.00498EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.6 views

CVE-2022-43120

A cross-site scripting XSS vulnerability in the /panel/fields/add component of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Field default value text field...

5.9AI score0.00498EPSS
Exploits1References1
OSV
OSV
added 2022/11/09 12:0 a.m.16 views

CVE-2022-43120

A cross-site scripting XSS vulnerability in the /panel/fields/add component of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Field default value text field...

6.1CVSS5.9AI score0.00498EPSS
Exploits1References3
OSV
OSV
added 2022/11/09 12:0 a.m.15 views

CVE-2022-43121

A cross-site scripting XSS vulnerability in the CMS Field Add page of Intelliants Subrion CMS v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the tooltip text field...

6.1CVSS5.9AI score0.0058EPSS
Exploits1References3
Veracode
Veracode
added 2022/06/13 8:40 a.m.22 views

Cross-Site Scripting (XSS)

intelliants/subrion is vulnerable to cross-site scripting. The vulnerability exists due to lack of validations when editing a blog entry which allows an attacker to modify the name of the uploaded images and execute arbitrary javascript...

5.4CVSS3AI score0.00526EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2022/03/05 12:0 a.m.48 views

GHSA-9CC3-5W85-PXVX Cross Site Request Forgery in intelliants/subrion

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS8.8AI score0.0219EPSS
Exploits2References3
Github Security Blog
Github Security Blog
added 2022/03/05 12:0 a.m.24 views

Cross-site Scripting in intelliants/subrion

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

6.1CVSS5.8AI score0.0163EPSS
Exploits2References3Affected Software1
Github Security Blog
Github Security Blog
added 2022/03/05 12:0 a.m.51 views

Cross Site Request Forgery in intelliants/subrion

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS8.6AI score0.0219EPSS
Exploits2References3Affected Software1
OSV
OSV
added 2022/03/04 3:15 p.m.25 views

CVE-2020-18326

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS7.2AI score0.0219EPSS
Exploits2References1
NVD
NVD
added 2022/03/04 3:15 p.m.45 views

CVE-2020-18326

Cross Site Request Forgery CSRF vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user...

8.8CVSS0.0219EPSS
Exploits2References1
Prion
Prion
added 2022/03/04 3:15 p.m.17 views

Cross site scripting

Multilple Cross Site Scripting XSS vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel...

4.3CVSS6AI score0.0163EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder