Security Advisories - tribalsystems/zenario

tribalsystems/zenario Security Advisories for 7.6.42990 (17)

[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

PKSA-sgtd-47vh-v7xk CVE-2023-44769 GHSA-8g87-73vq-443p

Affected version: <=9.4.59197

Reported by:
GitHub
[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

PKSA-wj4z-2892-4z7j CVE-2023-44771 GHSA-6cxv-27r2-fp3m

Affected version: <=9.4.59197

Reported by:
GitHub
[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

PKSA-1xsc-5sr6-rvqw CVE-2023-44770 GHSA-mr4w-7vm9-cgqx

Affected version: <=9.4.59197

Reported by:
GitHub
[CRITICAL] Zenario CMS is vulnerable to Remote Code Execution (RCE).

PKSA-r3db-vqz5-y73v CVE-2022-44136 GHSA-4p38-rc98-cr39

Affected version: <9.0.57473

Reported by:
GitHub
[MEDIUM] Tribal Systems Zenario CMS vulnerable to Session Fixation

PKSA-kr7w-3swh-1np4 CVE-2022-4231 GHSA-6657-9743-4mc6

Affected version: <=9.3.57595

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in Zenario

PKSA-5bxv-x652-p1vq CVE-2022-44069 GHSA-r9xx-4cmv-856x

Affected version: <=9.3.57186

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in Zenario

PKSA-m58d-b4jx-rskk CVE-2022-44070 GHSA-f454-jm6x-56q6

Affected version: <=9.3.57186

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in Zenario

PKSA-ksv4-pxr6-sf1s CVE-2022-44071 GHSA-j43m-4pxc-hmqj

Affected version: <=9.3.57186

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in Zenario

PKSA-skk6-b7wm-3vk6 CVE-2022-44073 GHSA-gmf5-q34v-vwvp

Affected version: <=9.3.57186

Reported by:
GitHub
[MEDIUM] Tribal Systems Zenario CMS vulnerable to Cross-site Scripting

PKSA-qt87-xrbp-66kt CVE-2020-36608 GHSA-f92p-f8r2-c87q

Affected version: <8.5.51340

Reported by:
GitHub
[HIGH] Zenario CMS vulnerable to CSRF

PKSA-512r-q764-n7nz CVE-2018-18420 GHSA-22cq-xxr9-jrrv

Affected version: <8.3

Reported by:
GitHub
[CRITICAL] SQL Injection in tribalsystems/zenario

PKSA-q8d1-1bp6-gjp2 CVE-2021-26830 GHSA-w4f3-7f7c-x652

Affected version: <8.8.53370

Reported by:
GitHub
[MEDIUM] Cross-site Scripting in Zenario CMS

PKSA-ctkk-ks6k-nhws CVE-2021-41952 GHSA-x8wj-cqmp-3wmm

Affected version: <=9.0.54156

Reported by:
GitHub
[CRITICAL] Unrestricted Upload of File with Dangerous Type in Zenario CMS

PKSA-7nc3-zf98-kc29 CVE-2021-42171 GHSA-rgg3-3wh7-w935

Affected version: <=9.0.54156

Reported by:
GitHub
[HIGH] File upload restriction bypass in Zenario CMS

PKSA-b6mz-47rp-w3c4 CVE-2022-23043 GHSA-6r86-2jm9-9mh4

Affected version: <9.2.55826

Reported by:
GitHub
[MEDIUM] SQL Injection in tribalsystems/zenario

PKSA-pvjm-gvbd-5smh CVE-2021-27672 GHSA-gxcm-36qw-j29v

Affected version: <8.8.53370

Reported by:
GitHub
[MEDIUM] reflected XSS in tribalsystems/zenario

PKSA-sqfw-99rk-f1bg CVE-2021-27673 GHSA-8hcm-jj4x-4gmr

Affected version: <8.8.53370

Reported by:
GitHub

tribalsystems/zenario Security Advisories for 7.6.42990 (17)

[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

[MEDIUM] Zenario CMS Cross-site Scripting vulnerability

[CRITICAL] Zenario CMS is vulnerable to Remote Code Execution (RCE).

[MEDIUM] Tribal Systems Zenario CMS vulnerable to Session Fixation

[MEDIUM] Cross-site Scripting in Zenario

[MEDIUM] Cross-site Scripting in Zenario

[MEDIUM] Cross-site Scripting in Zenario

[MEDIUM] Cross-site Scripting in Zenario

[MEDIUM] Tribal Systems Zenario CMS vulnerable to Cross-site Scripting

[HIGH] Zenario CMS vulnerable to CSRF

[CRITICAL] SQL Injection in tribalsystems/zenario

[MEDIUM] Cross-site Scripting in Zenario CMS

[CRITICAL] Unrestricted Upload of File with Dangerous Type in Zenario CMS

[HIGH] File upload restriction bypass in Zenario CMS

[MEDIUM] SQL Injection in tribalsystems/zenario

[MEDIUM] reflected XSS in tribalsystems/zenario