CVE-2020-12468

Publication date

2020-04-29 19:58:47

Family

mitre

State

PUBLISHED

Description

Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/.