Moderate severityNVD Advisory· Published Oct 19, 2023· Updated Sep 12, 2024
CVE-2023-43875
CVE-2023-43875
Description
Multiple Cross-Site Scripting (XSS) vulnerabilities in installation of Subrion CMS v.4.2.1 allows a local attacker to execute arbitrary web scripts via a crafted payload injected into the dbhost, dbname, dbuser, adminusername and adminemail.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
intelliants/subrionPackagist | <= 4.2.1 | — |
Affected products
2- Subrion/CMSdescription
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.