Intelliants - Subrion CVE

Filtered by vendor Intelliants Subscribe

Filtered by product Subrion

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-18155	1 Intelliants	1 Subrion	2021-07-29	7.5 HIGH	9.8 CRITICAL
SQL Injection vulnerability in Subrion CMS v4.2.1 in the search page if a website uses a PDO connection.
CVE-2017-5543	1 Intelliants	1 Subrion	2018-11-08	7.5 HIGH	9.8 CRITICAL
includes/classes/ia.core.users.php in Subrion CMS 4.0.5 allows remote attackers to conduct PHP Object Injection attacks via crafted serialized data in a salt cookie in a login request.

Vulnerabilities (CVE)