Tribalsystems Zenario vulnerabilities
23 known vulnerabilities affecting tribalsystems/zenario.
Total CVEs
23
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH4MEDIUM16
Vulnerabilities
Page 2 of 2
CVE-2024-45960P4MEDIUMCVSS 4.8v9.7.611882024-10-02
CVE-2024-45960 [MEDIUM] CWE-79 CVE-2024-45960: Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code int
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting (XSS) attack.
ghsanvdosv
CVE-2024-45964P4MEDIUMCVSS 4.8v9.7.611882024-10-02
CVE-2024-45964 [MEDIUM] CWE-79 CVE-2024-45964: Zenario 9.7.61188 is vulnerable to Cross Site Scripting (XSS) in the Image library via the "Organize
Zenario 9.7.61188 is vulnerable to Cross Site Scripting (XSS) in the Image library via the "Organizer tags" field.
ghsanvdosv
CVE-2023-39578P4MEDIUMCVSS 4.8v9.42023-08-28
CVE-2023-39578 [MEDIUM] CWE-79 CVE-2023-39578: A stored cross-site scripting (XSS) vulnerability in the Create function of Zenario CMS v9.4 allows
A stored cross-site scripting (XSS) vulnerability in the Create function of Zenario CMS v9.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Menu navigation text field.
nvd
← Previous2 / 2