EPSS
Percentile
87.7%
Subrion is vulnerable to SQL Injection attacks. The library does not have any checking for user input through the $_GET parameter in /front/search.php, allowing a malicious user to inject and execute arbitrary SQL.
$_GET
/front/search.php
github.com/intelliants/subrion/issues/479