Zeel Chavda

1 exploit Active since Aug 2018
CVE-2018-14840 EXPLOITDB MEDIUM text WRITEUP
Subrion < 4.2.2 - Cross-Site Scripting via .html File Upload
uploads/.htaccess in Subrion CMS 4.2.1 allows XSS because it does not block .html file uploads (but does block, for example, .htm file uploads).
CVSS 6.1