First published: Tue Dec 04 2018(Updated: )
Subrion CMS v4.2.1 allows XSS via the panel/configuration/general/ SITE TITLE parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Intelliants Subrion CMS | =4.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-16631 is a vulnerability in Subrion CMS v4.2.1 that allows cross-site scripting (XSS) attacks through the panel/configuration/general/SITE TITLE parameter.
CVE-2018-16631 has a severity rating of medium with a CVSS score of 5.4.
CVE-2018-16631 affects Subrion CMS version 4.2.1.
CVE-2018-16631 is associated with CWE-79, which is the Cross-Site Scripting (XSS) vulnerability.
To mitigate the CVE-2018-16631 vulnerability, update Subrion CMS to a version that addresses the XSS issue.