CVE-2020-12468

CVE-2020-12468

EPSS 0.9%

Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/belong2yourself/vulnerabilities/tree/master/Subrion%20CMS/CSV%20Injection