Security Advisories - tribalsystems/zenario

tribalsystems/zenario Security Advisories for 7.6.42990 (14)

Zenario CMS is vulnerable to Remote Code Execution (RCE).

CVE-2022-44136

Affected version: <9.0.57473

Reported by:
GitHub
Tribal Systems Zenario CMS vulnerable to Session Fixation

CVE-2022-4231

Affected version: <=9.3.57595

Reported by:
GitHub
Cross-site Scripting in Zenario

CVE-2022-44069

Affected version: <=9.3.57186

Reported by:
GitHub
Cross-site Scripting in Zenario

CVE-2022-44070

Affected version: <=9.3.57186

Reported by:
GitHub
Cross-site Scripting in Zenario

CVE-2022-44071

Affected version: <=9.3.57186

Reported by:
GitHub
Cross-site Scripting in Zenario

CVE-2022-44073

Affected version: <=9.3.57186

Reported by:
GitHub
Tribal Systems Zenario CMS vulnerable to Cross-site Scripting

CVE-2020-36608

Affected version: <8.5.51340

Reported by:
GitHub
Zenario CMS vulnerable to CSRF

CVE-2018-18420

Affected version: <8.3

Reported by:
GitHub
SQL Injection in tribalsystems/zenario

CVE-2021-26830

Affected version: <8.8.53370

Reported by:
GitHub
Cross-site Scripting in Zenario CMS

CVE-2021-41952

Affected version: <=9.0.54156

Reported by:
GitHub
Unrestricted Upload of File with Dangerous Type in Zenario CMS

CVE-2021-42171

Affected version: <=9.0.54156

Reported by:
GitHub
File upload restriction bypass in Zenario CMS

CVE-2022-23043

Affected version: <9.2.55826

Reported by:
GitHub
SQL Injection in tribalsystems/zenario

CVE-2021-27672

Affected version: <8.8.53370

Reported by:
GitHub
reflected XSS in tribalsystems/zenario

CVE-2021-27673

Affected version: <8.8.53370

Reported by:
GitHub