5 matches found
CVE-2024-45964
Zenario 9.7.61188 is vulnerable to Cross Site Scripting XSS in the Image library via the "Organizer tags" field...
CVE-2024-45964
Zenario 9.7.61188 is vulnerable to Cross Site Scripting XSS in the Image library via the "Organizer tags" field...
PT-2024-31856 · Zenario · Zenario
Name of the Vulnerable Software and Affected Versions: Zenario version 9.7.61188 Description: The issue allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting XSS...
PT-2024-31858 · Zenario · Zenario
Name of the Vulnerable Software and Affected Versions: Zenario version 9.7.61188 Description: The issue is a Cross Site Scripting XSS vulnerability in the Image library of Zenario, specifically via the Organizer tags field. This allows for potential malicious script execution. Recommendations: Fo...
CVE-2018-5960
Zenario v7.1 - v7.6 has SQL injection via the Name input field of organizer.php or adminboxes.ajax.php in the Categories - Edit module...