CVE-2017-6066 in Subrion CMSinfo

Summary

Subrion CMS 4.0.5 has CSRF in admin/languages/edit/1/. The attacker can perform any Edit Language action, and can optionally insert XSS via the title parameter.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

02/17/2017

Disclosure

03/26/2017

Moderation

VulDB entry created

Entries

VDB-98557 (1)

CPE

ready

CWE

CWE-352 (Confirmed)

CVSS

6.5

EPSS

0.00207

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-6066
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-6066
CVE Details	https://www.cvedetails.com/cve/CVE-2017-6066/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!