Acronis Cyber Protect/Backup Remote Code Execution

Fortinet FortiManager Unauthenticated Remote Code Execution

Asterisk AMI Originate Authenticated Remote Code Execution

Debian Security Advisory 5823-1

Debian Security Advisory 5815-2

Subrion CMS version 4.2.1 suffers from a persistent cross site scripting vulnerability.

    # Exploit Title: Subrion CMS 4.2.1 - Stored Cross-Site Scripting (XSS)# Date: 2022-08-10# Exploit Author: Sinem Şahin# Vendor Homepage: https://intelliants.com/# Version: 4.2.1# Tested on: Windows & XAMPP==> Tutorial <==1- Go to the following url. => http://(HOST)/panel/fields/add2- Write XSS Payload into the tooltip value of the field add page.3- Press "Save" button.4- Go to the following url. => http://(HOST)/panel/members/addXSS Payload ==> "<script>alert("field_tooltip_XSS")</script> Reference: ://github.com/intelliants/subrion/issues/895

Headline

Subrion CMS 4.2.1 Cross Site Scripting

Packet Storm: Latest News