Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intelliants vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-18325
Multilple Cross Site Scripting (XSS) vulnerability exists in Intelliants Subrion CMS v4.2.1 in the Configuration panel.
Intelliants Subrion Cms 4.2.1
1 Github repository
NA
CVE-2023-43875
Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local malicious user to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser, adminusername and adminemail.
Intelliants Subrion Cms 4.2.1
6.8
CVSSv2
CVE-2020-18326
Cross Site Request Forgery (CSRF) vulnerability exists in Intelliants Subrion CMS v4.2.1 via the Members administrator function, which could let a remote unauthenticated malicious user send an authorised request to victim and successfully create an arbitrary administrator user.
Intelliants Subrion Cms 4.2.1
1 Github repository
6.8
CVSSv2
CVE-2017-18366
Subrion CMS 4.1.5 has CSRF in blog/delete/.
Intelliants Subrion Cms 4.1.5
6.8
CVSSv2
CVE-2017-6069
Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter.
Intelliants Subrion Cms 4.0.5
NA
CVE-2022-37059
Cross Site Scripting (XSS) in Admin Panel of Subrion CMS 4.2.1 allows malicious user to inject arbitrary code via Login Field
Intelliants Subrion Cms 4.2.1
1 Github repository
3.5
CVSSv2
CVE-2021-41502
An issue exists in Subrion CMS v4.2.1 There is a stored cross-site scripting (XSS) vulnerability that can execute malicious JavaScript code by modifying the name of the uploaded image, closing the html tag, or adding the onerror attribute.
Intelliants Subrion Cms 4.2.1
6.5
CVSSv2
CVE-2021-41947
A SQL injection vulnerability exists in Subrion CMS v4.2.1 in the visual-mode.
Intelliants Subrion Cms 4.2.1
4.3
CVSSv2
CVE-2020-18324
Cross Site Scripting (XSS) vulnerability exists in Subrion CMS 4.2.1 via the q parameter in the Kickstart template.
Intelliants Subrion Cms 4.2.1
1 Github repository
6.8
CVSSv2
CVE-2017-6002
Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. The attacker can add any blog entry, and can optionally insert XSS into that entry via the body parameter.
Intelliants Subrion Cms 4.0.5.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »