Lucene search

K

Zenario Security Vulnerabilities - 2023

cve

A stored cross-site scripting (XSS) vulnerability in the Create function of Zenario CMS v9.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Menu navigation text field.

4.8CVSS

4.9AI Score

0.001EPSS

2023-08-28 08:15 PM

11

cve

A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows a local attacker to execute arbitrary code via a crafted script to the Spare aliases from Alias.

5.4CVSS

5.2AI Score

0.0004EPSS

2023-10-25 06:17 PM

15

cve

A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows an attacker to execute arbitrary code via a crafted script to the Organizer - Spare alias.

5.4CVSS

5.2AI Score

0.001EPSS

2023-10-06 01:15 PM

29

cve

A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows a local attacker to execute arbitrary code via a crafted script to the Page Layout.

5.4CVSS

5.2AI Score

0.001EPSS

2023-10-06 01:15 PM

29