CVE-2023-43875
19.10.2023, 22:15
Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser, adminusername and adminemail.
| Vendor | Product | Version |
|---|---|---|
| intelliants | subrion_cms | 4.2.1 |
𝑥
= Vulnerable software versions
References