Subrion CMS XSS
Moderate severity
GitHub Reviewed
Published
May 14, 2022
to the GitHub Advisory Database
•
Updated Oct 6, 2023
Description
Published by the National Vulnerability Database
Aug 2, 2018
Published to the GitHub Advisory Database
May 14, 2022
Reviewed
Jul 24, 2023
Last updated
Oct 6, 2023
Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.
References