Every CVE whose affected-product data names Subrion Subrion Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-14836 — CVSS 6.5 (medium): Subrion 4.2.1 is vulnerable to Improper Access control because user groups not having access to the Admin panel are able to access it (but…
CVE-2018-14835 — CVSS 5.4 (medium): Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.