pkg:Packagist/tribalsystems/zenario

All known vulnerabilities

• CRITICAL9.8CVE-2024-34461Zenario uses Twig filters insecurely in the Twig Snippet plugin
  from 0, < 9.5.60437
• CRITICAL9.8CVE-2022-44136Zenario CMS is vulnerable to Remote Code Execution (RCE).
  from 0, < 9.0.57473
• CRITICAL9.8CVE-2021-42171Unrestricted Upload of File with Dangerous Type in Zenario CMS
  from 0, < 9.0.55143
• CRITICAL9.1SQL Injection in tribalsystems/zenario
  from 0, < 8.8.53370
• HIGH8.8Zenario CMS vulnerable to CSRF
  from 0
• HIGH8.8SQL Injection in Zenario 7.1-7.6
  >= 7.1, <= 7.6
• HIGH7.2File upload restriction bypass in Zenario CMS
  from 0, < 9.2.55826
• MEDIUM6.5Zenario's Tree Explorer tool from Organizer affected by Cross-site Scripting
  from 0, < 9.5.60602
• MEDIUM6.1Tribal Systems Zenario CMS vulnerable to Cross-site Scripting
  from 0, < 8.5.51340
• MEDIUM5.4Zenario Cross Site Scripting in the Image library
  from 0, <= 9.7.61188
• MEDIUM5.4Zenario CMS Cross-site Scripting vulnerability
  from 0, <= 9.4.59197
• MEDIUM5.4Zenario CMS Cross-site Scripting vulnerability
  from 0, <= 9.4.59197
• MEDIUM5.4Zenario CMS Cross-site Scripting vulnerability
  from 0, <= 9.4.59197
• MEDIUM5.4Tribal Systems Zenario CMS vulnerable to Session Fixation
  from 0, <= 9.3.57595
• MEDIUM5.4Cross-site Scripting in Zenario
  from 0, <= 9.3.57186
• MEDIUM5.4Cross-site Scripting in Zenario
  from 0, <= 9.3.57186
• MEDIUM5.4Cross-site Scripting in Zenario
  from 0, <= 9.3.57186
• MEDIUM5.4Cross-site Scripting in Zenario
  from 0, <= 9.3.57186
• MEDIUM4.9SQL Injection in tribalsystems/zenario
  from 0, < 8.8.53370
• MEDIUM4.8Zenario allows authenticated admin users to upload PDF files containing malicious code
  from 0, <= 9.7.61188
• MEDIUM4.8Cross-site Scripting in Zenario CMS
  from 0, < 9.0.55143
• MEDIUM4.8reflected XSS in tribalsystems/zenario
  from 0, < 8.8.53370