Creatigon

1 exploit Active since Oct 2019
CVE-2019-17225 EXPLOITDB MEDIUM text WORKING POC
Subrion 4.2.1 - Cross-Site Scripting via Admin Member JSON Update
Subrion 4.2.1 allows XSS via the panel/members/ Username, Full Name, or Email field, aka an "Admin Member JSON Update" issue.
CVSS 5.4