Filtered by vendor Intelliants
Subscriptions
Filtered by product Subrion
Subscriptions
Total
24 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-41948 | 1 Intelliants | 1 Subrion | 2024-08-04 | 5.4 Medium |
A cross-site scripting (XSS) vulnerability exists in the "contact us" plugin for Subrion CMS <= 4.2.1 version via "List of subjects". | ||||
CVE-2023-43884 | 1 Intelliants | 1 Subrion | 2024-08-02 | 5.4 Medium |
A Cross-site scripting (XSS) vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter. | ||||
CVE-2023-43830 | 1 Intelliants | 1 Subrion | 2024-08-02 | 5.4 Medium |
A Cross-site scripting (XSS) vulnerability in /panel/configuration/financial/ of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: 'Minimum deposit', 'Maximum deposit' and/or 'Maximum balance'. | ||||
CVE-2023-43828 | 1 Intelliants | 1 Subrion | 2024-08-02 | 5.4 Medium |
A Cross-site scripting (XSS) vulnerability in /panel/languages/ of Subrion v4.2.1 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Title' parameter. |