CVE-2018-14835

Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.
References
Link Resource
https://github.com/intelliants/subrion/pull/763/commits Patch Third Party Advisory
https://github.com/intelliants/subrion/issues/760 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:subrion:subrion_cms:4.2.1:*:*:*:*:*:*:*

Information

Published : 2018-08-02 12:29

Updated : 2018-09-28 07:03


NVD link : CVE-2018-14835

Mitre link : CVE-2018-14835

Products Affected
No products.
CWE