Cross Site Scripting (XSS) vulnerability in subrion CMS Version <= 4.2.1 allows remote attackers to execute arbitrary web script via the "payment gateway" column on transactions tab.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| intelliants/subrion(Packagist) | 0 | N/A | N/A |
CVSS Metrics
