intelliants/subrion is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the improper restrictions of uploading html
files, allowing html
with arbitrary scripts to be rendered.
CPE | Name | Operator | Version |
---|---|---|---|
intelliants/subrion | le | 4.1.5.20-dev |