depscope
Packages
IntegrateAPI DocsCuratorBenchmarkCoverage
Sign inGet API access
depscope/composer/intelliants/subrion

intelliants/subrion

composervv4.2.1

Powerful opensource content management system written in PHP5 + MySQL.

License GPL v3strong copyleft14 versions2 maintainers2 deps
intelliants/subrion
12
/ 100
Health
do not use

intelliants/subrion has critical vulnerabilities — do not use

Update to >= 4.2.2 to fix known vulnerabilities

  • Moderate health score (12/100) — verify manually
  • 5 high severity vulnerabilities
  • 1 critical vulnerabilities
Health breakdown0 – 100
0/25
maintenance
0/20
popularity
0/25
security
9/15
maturity
3/15
community
Vulnerabilities
26
1 critical5 high20 medium
Advisories (26)
SeverityIDSummaryFixed in
highCVE-2023-46947Subrion remote command execution vulnerability—
mediumCVE-2022-43120Subrion CMS is vulnerable to Cross-Site Scripting (XSS)—
highCVE-2020-12468Subrion CMS CSV injection via Export Language—
mediumCVE-2023-43828Subrion CMS Cross-site Scripting vulnerability in /panel/languages—
mediumCVE-2023-43875Subrion CMS vulnerable to Cross-site Scripting—
highCVE-2018-19422Subrion CMS RCE Vulnerability4.2.2
criticalCVE-2020-18155SQL Injection in Subrion CMS —
mediumCVE-2023-43884Subrion CMS Cross-site Scripting vulnerability—
highCVE-2020-18326Cross Site Request Forgery in intelliants/subrion—
mediumCVE-2025-70958Subrion CMS vulnerable to cross-site scripting—
mediumCVE-2020-12469Subrion CMS PHP Object Injection—
highCVE-2021-43464Remote code execution in Subrion—
mediumCVE-2025-56556Subrion CMS: Authenticated administrators are able to gain escalated access through Run SQL Query tool—
mediumCVE-2020-22392Cross Site Scripting in Subrion CMS—
mediumCVE-2020-22330Subrion Cross-Site Scripting (XSS) vulnerability4.2.2
mediumCVE-2022-43121Subrion CMS is vulnerable to Cross-Site Scripting (XSS)—
mediumCVE-2021-41948Subrion CMS Cross-site Scripting (XSS) vulnerability in the `contact us` plugin—
mediumCVE-2021-41502Cross site scripting in intelliants/subrion—
mediumCVE-2020-18325Cross-site Scripting in intelliants/subrion—
mediumCVE-2024-25399Subrion CMS vulnerable to Cross Site Scripting —
... and 6 more
Threat intelligence
1 likely exploited (EPSS ≥ 0.5)
Threat tier per vulnerability derived from CISA KEV catalog + FIRST.org EPSS scores.

Health History

Dependency Tree

License Audit

Dependencies (2)
phpcomposer/installers
API access

Get this data programmatically — free, no authentication.

curl https://depscope.dev/api/check/composer/intelliants/subrion

Last updated · 2018-06-14T12:04:55+00:00

DepScope

Package intelligence for AI agents. 19 ecosystems.

Resources
API DocumentationHallucination BenchmarkFor EnterpriseSwagger / OpenAPIPopular PackagesCoverageAI Plugin SetupWatch the pitch (60s)
Legal
Legal hubPrivacy PolicyTerms of ServiceCookie PolicyAcceptable UseAttributionDPASub-processorsSecurityImprintContact中文
© 2026 Cuttalo srl — Italy · VAT IT03242390734Built for AI agents