12 matches found
CVE-2024-45960
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS attack...
GHSA-3636-HX62-PV26 Zenario allows authenticated admin users to upload PDF files containing malicious code
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS attack...
CVE-2024-45960
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS attack...
CVE-2024-45964
Zenario 9.7.61188 is vulnerable to Cross Site Scripting XSS in the Image library via the "Organizer tags" field...
Zenario CMS 安全漏洞
Zenario CMS is a Zenario open source application . Provides a Web-based content management system . A cross-site scripting vulnerability exists in Zenario CMS version 9.7.61188, which stems from the lack of effective filtering and escaping of user-supplied data in the "Organizer tags" field and c...
Zenario CMS 安全漏洞
Zenario CMS is an open source application. Provides a Web-based content management system . A security vulnerability exists in Zenario CMS version 9.7.61188. The vulnerability stems from the application's lack of effective validation of uploaded files. An attacker can exploit the vulnerability to...
CVE-2024-45964
Zenario 9.7.61188 is vulnerable to Cross Site Scripting XSS in the Image library via the "Organizer tags" field...
CVE-2024-45964
CVE-2024-45964 affects Zenario CMS version 9.7.61188. The vulnerability is a Cross-Site Scripting (XSS) in the Image library triggered via the Organizer tags field, arising from lack of proper filtering/escaping of user-supplied data. Impact details are limited in the provided documents, but mult...
CVE-2024-45960
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS attack...
CVE-2024-45960
Zenario CMS 9.7.61188 is affected. Authentication is required for the exploit: an admin can upload PDF files containing malicious code. If such a PDF is accessed via the site, it can trigger Cross-Site Scripting (XSS) in the user’s browser. The root cause is a lack of proper validation for upload...
CVE-2024-45960
Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS attack...
CVE-2024-45964
Zenario 9.7.61188 is vulnerable to Cross Site Scripting XSS in the Image library via the "Organizer tags" field...