EPSS
Percentile
44.8%
subrion is vulnerable to CSV injection. The injection is possible because it does not sanitize a phrase value within a language, which is related to phrases/add/ and languages/download/.
phrases/add/
languages/download/
github.com/belong2yourself/vulnerabilities/tree/master/Subrion%20CMS/CSV%20Injection