EPSS
Percentile
29.3%
subrion is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject arbitrary Javascript into a victim’s browser to steal session tokens or perform unwanted actions on behalf of the user.
github.com/intelliants/subrion/releases/tag/v4.1.4