Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intelliants subrion cms 4.1.5 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-18366
Subrion CMS 4.1.5 has CSRF in blog/delete/.
Intelliants Subrion Cms 4.1.5
6.8
CVSSv2
CVE-2018-21037
Subrion CMS 4.1.5 (and possibly earlier versions) allow CSRF to change the administrator password via the panel/members/edit/1 URI.
Intelliants Subrion
6.8
CVSSv2
CVE-2017-15063
There are CSRF vulnerabilities in Subrion CMS 4.1.x up to and including 4.1.5, and prior to 4.2.0, because of a logic error. Although there is functionality to detect CSRF, it is called too late in the ia.core.php code, allowing (for example) an attack against the query parameter...
Intelliants Subrion
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started