CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Intelliants: >> Subrion Cms >> 4.0.5.10 Security Vulnerabilities

CVE-2021-43724

A Cross Site Scripting (XSS) vulnerability exits in Subrion CMS through 4.2.1 in the Create Page functionality of the admin Account via a SGV file.

CVSS Score

4.8

EPSS Score

0.002

Published

2022-02-24

CVE-2017-11444

Subrion CMS before 4.1.5.10 has a SQL injection vulnerability in /front/search.php via the $_GET array.

CVSS Score

9.8

EPSS Score

0.786

Published

2017-07-19

CVE-2017-11445

Subrion CMS before 4.1.6 has a SQL injection vulnerability in /front/actions.php via the $_POST array.

CVSS Score

9.8

EPSS Score

0.003

Published

2017-07-19

CVE-2017-6002

Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. The attacker can add any blog entry, and can optionally insert XSS into that entry via the body parameter.

CVSS Score

8.8

EPSS Score

0.001

Published

2017-03-27

CVE-2017-6013

Subrion CMS 4.0.5.10 has SQL injection in admin/database/ via the query parameter.

CVSS Score

9.8

EPSS Score

0.006

Published

2017-03-27

Page 1

Vulnerabilities

Vulnerable Software

Intelliants: >> Subrion Cms >> 4.0.5.10 Security Vulnerabilities

Products

Pricing

Contact Us