Subrion Security Vulnerabilities and Issues — Subrion CVE List

Lucene search

IntelliantsSubrion

4 matches found

CVE•added 2023/09/28 3:15 p.m.•104 views

CVE-2023-43884

A Cross-site scripting (XSS) vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter.

5.4CVSS5.4AI score0.00184EPSS

CVE•added 2023/11/03 1:15 p.m.•43 views

CVE-2023-46947

Subrion 4.2.1 has a remote command execution vulnerability in the backend.

8.8CVSS8.7AI score0.01861EPSS

CVE•added 2023/09/27 3:19 p.m.•29 views

CVE-2023-43830

A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit', 'Maximum deposit' and/or 'Maximum balance'.

5.4CVSS5.4AI score0.0027EPSS

CVE•added 2023/09/27 3:19 p.m.•25 views

CVE-2023-43828

A Cross-site scripting (XSS) vulnerability in /panel/languages/ of Subrion v4.2.1 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Title' parameter.

5.4CVSS5.4AI score0.0027EPSS