EPSS
Percentile
59.4%
Subrion is vulnerable to SQL injection attacks. The library does not do any checking through the $_POST array in the /front/actions.php file, allowing a malicious user to inject and execute arbitrary SQL.
$_POST
/front/actions.php
github.com/intelliants/subrion/issues/480