Saturday, December 26, 2020
CVE-2020-35437
nist.gov
In: nist.gov
Subrion CMS 4.2.1 is affected by: Cross Site Scripting (XSS) through the avatar[path] parameter in a POST request to the /_core/profile/ URI. CVE-2020-35437
Copyright © 2020 Cyber Details - Vulnerability Database™
Thanks for everything Templateism - You should have written the code a little more complicated