CVE-2012-4773

Subrion CMS < 2.2.3 - Cross-Site Request Forgery

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-4773. PoCs published by LiquidWorm.

AI-analyzed exploit summary This is a CSRF exploit for Subrion CMS 2.2.1 that adds an admin user by submitting a crafted form. It leverages lack of CSRF protection to perform unauthorized administrative actions.

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in Subrion CMS before 2.2.3 allow remote attackers to hijack the authentication of administrators for requests that add, delete, or modify sensitive information, as demonstrated by adding an administrator account via an add action to admin/accounts/add/.

Exploits (2)

exploitdb WORKING POC

by LiquidWorm · textwebappsphp

https://www.exploit-db.com/exploits/21267

View Code ZIP pw:eip

This is a CSRF exploit for Subrion CMS 2.2.1 that adds an admin user by submitting a crafted form. It leverages lack of CSRF protection to perform unauthorized administrative actions.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Subrion CMS 2.2.1

No auth needed

Prerequisites: Victim must be logged into Subrion CMS as an admin and visit the malicious page

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/22159

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in Subrion CMS 2.2.1, including SQL injection via the 'plan_id' parameter, XSS via 'f[accounts][fullname]' and 'f[accounts][username]' parameters, and CSRF to create an admin account. Functional PoC code is provided for each vulnerability.

Classification

Working Poc 100%

Attack Type

Sqli | Xss | Csrf

Complexity

Trivial

Reliability

Reliable

Target: Subrion CMS 2.2.1

No auth needed

Prerequisites: Access to the target application · For CSRF, an authenticated admin session

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (10)

Core 10

Core References

Exploit mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2012-10/0096.html

Exploit x_refsource_misc

http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5106.php

Exploit x_refsource_misc

https://www.htbridge.com/advisory/HTB23113

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/78469

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/79469

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.org/files/117460/Subrion-CMS-2.2.1-XSS-CSRF-SQL-Injection.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/85999

Vendor Advisory x_refsource_confirm

http://www.subrion.com/forums/announcements/934-subrion-2-2-3-open-source-cms-core-available.html

Exploit x_refsource_misc

http://packetstormsecurity.org/files/116433

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/51013

Scores

EPSS 0.0349

EPSS Percentile 87.6%

Details

CWE

CWE-352

Status published

Products (4)

intelliants/subrion_cms 2.0.4

intelliants/subrion_cms 2.2.0

intelliants/subrion_cms 2.2.1

intelliants/subrion_cms < 2.2.2

Published Oct 22, 2012

Tracked Since Feb 18, 2026