Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2017-10795

Disclosure Date: July 02, 2017 (last updated November 26, 2024)

Cross-site scripting (XSS) vulnerability in Subrion CMS 4.1.4 allows remote attackers to inject arbitrary web script or HTML via the body to blog/add/, a different vulnerability than CVE-2017-6069.

Attacker Value

Unknown

CVE-2017-6069

Disclosure Date: March 27, 2017 (last updated November 26, 2024)

Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter.

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2017-10795

Unknown

CVE-2017-6069

Quick Cookie Notification