Описание
Subrion CMS Cross-site Scripting (XSS) vulnerability in the contact us plugin
A cross-site scripting (XSS) vulnerability exists in the contact us plugin for Subrion CMS <= 4.2.1 version via List of subjects. This can be exploited by someone with administrative privileges when they log in to the admin panel.
Пакеты
Наименование
intelliants/subrion
composer
Затронутые версииВерсия исправления
<= 4.2.1
Отсутствует
Связанные уязвимости
CVSS3: 5.4
nvd
почти 4 года назад
A cross-site scripting (XSS) vulnerability exists in the "contact us" plugin for Subrion CMS <= 4.2.1 version via "List of subjects".