Subrion CMS vulnerable to Cross Site Scripting · CVE-2024-25399 · GitHub Advisory Database · GitHub

Subrion CMS vulnerable to Cross Site Scripting

Moderate severity GitHub Reviewed Published Feb 27, 2024 to the GitHub Advisory Database • Updated Feb 27, 2024

Package

intelliants/subrion (Composer)

Affected versions

<= 4.2.1

Patched versions

None

Description

Subrion CMS 4.2.1 is vulnerable to Cross Site Scripting (XSS) via adminer.php.

References

Published by the National Vulnerability Database

Feb 27, 2024

Published to the GitHub Advisory Database Feb 27, 2024

Reviewed Feb 27, 2024

Last updated Feb 27, 2024