Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.
References
Link | Resource |
---|---|
https://github.com/intelliants/subrion/issues/760 | Exploit Third Party Advisory |
https://github.com/intelliants/subrion/pull/763/commits | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-08-02T00:00:00
Updated: 2018-08-02T00:57:01
Reserved: 2018-08-01T00:00:00
Link: CVE-2018-14835
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-08-02T00:29:00.217
Modified: 2018-09-28T19:03:05.060
Link: CVE-2018-14835
JSON object: View
Redhat Information
No data.
CWE