← Back to CVE List
CVE-2017-6002
Published:
2017-03-27T02:59Z
Last Modified:
2024-11-21T03:28Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. The attacker can add any blog entry, and can optionally insert XSS into that entry via the body parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt