Lucene search
Veracode Vulnerability DatabaseVERACODE:37810HistoryNov 04, 2022 - 3:27 a.m.
Cross-site Scripting (XSS)
2022-11-0403:27:42
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5
cross-site scripting
vulnerability
admin_organizer.js
error log module
malicious javascript
software
0.001 Low
EPSS
Percentile
26.4%
tribalsystems/zenario is vulnerable to cross-site scripting attacks. The vulnerability exists due to a lack of sanitization in the admin_organizer.js of the component error log module, allowing an attacker to inject and execute malicious javascript into the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tribalsystems/zenario | le | 8.5.50837 | |
| tribalsystems/zenario | le | 8.5.50837 |
Related
nvd
nvd
CVE-2020-36608
2022-11-02 19:15:09
osv
osv
CVE-2020-36608
2022-11-02 19:15:09
Tribal Systems Zenario CMS vulnerable to Cross-site Scripting
2022-11-03 12:00:30
github
github
Tribal Systems Zenario CMS vulnerable to Cross-site Scripting
2022-11-03 12:00:30
cve
cve
CVE-2020-36608
2022-11-02 19:15:09
cvelist
cvelist
prion
prion
Cross site scripting
2022-11-02 19:15:00