CVE-2023-43875
EUVD-2023-266519.10.2023, 22:15
Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser, adminusername and adminemail.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| intelliants | subrion_cms | 4.2.1 |
𝑥
= Vulnerable software versions
References