CVE-2018-14835

CVE-2018-14835

EPSS 0.7%

Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/intelliants/subrion/issues/760 https://github.com/intelliants/subrion/pull/763/commits