Lucene search
China National Vulnerability DatabaseCNVD-2022-72212HistoryMay 06, 2022 - 12:00 a.m.
Subrion CMS Cross-Site Scripting Vulnerability (CNVD-2022-72212)
2022-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
subrion cms
cross-site scripting
php-based
content management system
contact us plugin
topic list
data validation
data filtering
EPSS
0.001
Percentile
24.8%
Subrion CMS is a PHP-based content management system (CMS) from the Subrion team. A cross-site scripting vulnerability exists in Subrion CMS version 4.2.1 and earlier, which stems from a lack of data validation of user-supplied data and output in the “Contact Us” plugin of the “Topic List”. data and output data validation filtering. An attacker could use this vulnerability to execute JavaScript code on the client side.
Related
cvelist
cvelist
CVE-2021-41948
2022-04-29 13:41:22
osv
osv
CVE-2021-41948
2022-04-29 14:15:08
github
github
prion
prion
Cross site scripting
2022-04-29 14:15:00
cve
cve
CVE-2021-41948
2022-04-29 14:15:08
nvd
nvd
CVE-2021-41948
2022-04-29 14:15:08