Security Advisory

CVE-2020-35437

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-26 03:58:04
Last updated 2024-08-04 17:02:08
Assigner mitre
State PUBLISHED

Description

Subrion CMS 4.2.1 is affected by: Cross Site Scripting (XSS) through the avatar[path] parameter in a POST request to the /_core/profile/ URI.