VIR Vulnerability Intelligence Relay

Package impact

php Packagist / intelliants/subrion

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2017-5543 critical 9.8 9.8 10y ago Subrion CMS PHP Object Injection
CVE-2017-15063 high 8.8 8.8 9y ago Subrion CMS CSRF Vulnerability
CVE-2017-6068 high 8.8 8.8 9y ago Subrion CMS vulnerable to CSRF in admin/blocks/add
CVE-2017-10795 medium 6.1 6.1 9y ago Subrion Cross-site scripting (XSS) vulnerability
CVE-2014-9120 medium 4.3 12y ago Subrion CMS Cross-site scripting in search
CVE-2018-19422 unknown 1.0 4y ago Subrion CMS RCE Vulnerability
CVE-2025-70958 unknown 4mo ago Subrion CMS vulnerable to cross-site scripting
CVE-2025-56556 unknown 9mo ago Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool
CVE-2024-25399 unknown 2y ago Subrion CMS vulnerable to Cross Site Scripting
CVE-2023-46947 unknown 3y ago Subrion remote command execution vulnerability
CVE-2023-43875 unknown 3y ago Subrion CMS vulnerable to Cross-site Scripting
CVE-2023-43884 unknown 3y ago Subrion CMS Cross-site Scripting vulnerability
CVE-2023-43828 unknown 3y ago Subrion CMS Cross-site Scripting vulnerability in /panel/languages
CVE-2023-43830 unknown 3y ago Subrion CMS XSS in /panel/configuration/financial/
CVE-2022-43120 unknown 4y ago Subrion CMS is vulnerable to Cross-Site Scripting (XSS)
CVE-2022-43121 unknown 4y ago Subrion CMS is vulnerable to Cross-Site Scripting (XSS)
CVE-2022-37059 unknown 4y ago Subrion CMS 4.2.1 vulnerable to cross-site scripting in admin panel
CVE-2021-41502 unknown 4y ago Cross site scripting in intelliants/subrion
CVE-2020-22330 unknown 4y ago Subrion Cross-Site Scripting (XSS) vulnerability
CVE-2020-23761 unknown 4y ago subrion CMS Cross Site Scripting (XSS) vulnerability
CVE-2019-7357 unknown 4y ago Subrion CMS CSRF Vulnerability
CVE-2019-20390 unknown 4y ago Subrion CMS Cross-Site Request Forgery (CSRF) vulnerability
CVE-2019-20389 unknown 4y ago Subrion CMS XSS
CVE-2020-12469 unknown 4y ago Subrion CMS PHP Object Injection
CVE-2020-12468 unknown 4y ago Subrion CMS CSV injection via Export Language
CVE-2018-21037 unknown 4y ago Subrion CMS CSRF Vulnerability
CVE-2018-11317 unknown 4y ago Subrion CMS XSS
CVE-2018-14835 unknown 4y ago Subrion CMS XSS
CVE-2018-14840 unknown 4y ago Subrion CMS Cross-site Scripting
CVE-2018-15563 unknown 4y ago Subrion CMS Stored Cross-site Scripting (XSS)
CVE-2018-16327 unknown 4y ago Subrion Cross-site Scripting (XSS)
CVE-2018-16629 unknown 4y ago Subrion CMS XSS
CVE-2017-18366 unknown 4y ago Subrion CMS vulnerable to CSRF in blog/delete
CVE-2021-41948 unknown 4y ago Subrion CMS Cross-site Scripting (XSS) vulnerability in the `contact us` plugin
CVE-2021-43464 unknown 4y ago Remote code execution in Subrion
CVE-2020-18326 unknown 4y ago Cross Site Request Forgery in intelliants/subrion
CVE-2020-18325 unknown 4y ago Cross-site Scripting in intelliants/subrion
CVE-2020-18324 unknown 4y ago Cross-site Scripting in Subrion CMS
CVE-2020-18155 unknown 5y ago SQL Injection in Subrion CMS
CVE-2020-22392 unknown 5y ago Cross Site Scripting in Subrion CMS
CVE-2020-12467 unknown 5y ago Session Fixation in Subrion CMS