Subrion Cms Security Vulnerabilities and Issues — Subrion Cms CVE List

Lucene search

IntelliantsSubrion Cms

3 matches found

CVE•added 2022/03/04 3:15 p.m.•63 views

CVE-2020-18324

Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.1 via the q parameter in the Kickstart template.

6.1CVSS5.9AI score0.06672EPSS

CVE•added 2022/03/04 3:15 p.m.•63 views

CVE-2020-18325

Multilple Cross Site Scripting (XSS) vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel.

6.1CVSS5.9AI score0.01623EPSS

CVE•added 2022/03/04 3:15 p.m.•56 views

CVE-2020-18326

Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.

8.8CVSS8.8AI score0.0164EPSS