Lucene search
GoogleOSV:GHSA-JV64-2M3X-6V4QHistoryApr 30, 2022 - 12:00 a.m.
Subrion CMS Cross-site Scripting (XSS) vulnerability in the `contact us` plugin
2022-04-3000:00:36
Google
osv.dev
14
subrion cms
xss
contact us
plugin
list of subjects
administrative privileges
EPSS
0.001
Percentile
24.8%
A cross-site scripting (XSS) vulnerability exists in the contact us plugin for Subrion CMS <= 4.2.1 version via List of subjects. This can be exploited by someone with administrative privileges when they log in to the admin panel.
Related
cvelist
cvelist
CVE-2021-41948
2022-04-29 13:41:22
github
github
prion
prion
Cross site scripting
2022-04-29 14:15:00
cnvd
cnvd
Subrion CMS Cross-Site Scripting Vulnerability (CNVD-2022-72212)
2022-05-06 00:00:00
cve
cve
CVE-2021-41948
2022-04-29 14:15:08
nvd
nvd
CVE-2021-41948
2022-04-29 14:15:08
osv
osv
CVE-2021-41948
2022-04-29 14:15:08