pkg:Packagist/tribalsystems/zenario

22 total CVEsCRITICAL4HIGH3MEDIUM15

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2024-34461Zenario uses Twig filters insecurely in the Twig Snippet plugin
    from 0, < 9.5.60437
  • CRITICAL9.8CVE-2022-44136Zenario CMS is vulnerable to Remote Code Execution (RCE).
    from 0, < 9.0.57473
  • CRITICAL9.8CVE-2021-42171Unrestricted Upload of File with Dangerous Type in Zenario CMS
    from 0, < 9.0.55143
  • CRITICAL9.1CVE-2021-26830SQL Injection in tribalsystems/zenario
    from 0, < 8.8.53370
  • HIGH8.8CVE-2018-18420Zenario CMS vulnerable to CSRF
    from 0
  • HIGH8.8CVE-2018-5960SQL Injection in Zenario 7.1-7.6
    >= 7.1, <= 7.6
  • HIGH7.2CVE-2022-23043File upload restriction bypass in Zenario CMS
    from 0, < 9.2.55826
  • MEDIUM6.5CVE-2024-34460Zenario's Tree Explorer tool from Organizer affected by Cross-site Scripting
    from 0, < 9.5.60602
  • MEDIUM6.1CVE-2020-36608Tribal Systems Zenario CMS vulnerable to Cross-site Scripting
    from 0, < 8.5.51340
  • MEDIUM5.4CVE-2024-45964Zenario Cross Site Scripting in the Image library
    from 0, <= 9.7.61188
  • MEDIUM5.4CVE-2023-44769Zenario CMS Cross-site Scripting vulnerability
    from 0, <= 9.4.59197
  • MEDIUM5.4CVE-2023-44770Zenario CMS Cross-site Scripting vulnerability
    from 0, <= 9.4.59197
  • MEDIUM5.4CVE-2023-44771Zenario CMS Cross-site Scripting vulnerability
    from 0, <= 9.4.59197
  • MEDIUM5.4CVE-2022-4231Tribal Systems Zenario CMS vulnerable to Session Fixation
    from 0, <= 9.3.57595
  • MEDIUM5.4CVE-2022-44069Cross-site Scripting in Zenario
    from 0, <= 9.3.57186
  • MEDIUM5.4CVE-2022-44073Cross-site Scripting in Zenario
    from 0, <= 9.3.57186
  • MEDIUM5.4CVE-2022-44071Cross-site Scripting in Zenario
    from 0, <= 9.3.57186
  • MEDIUM5.4CVE-2022-44070Cross-site Scripting in Zenario
    from 0, <= 9.3.57186
  • MEDIUM4.9CVE-2021-27672SQL Injection in tribalsystems/zenario
    from 0, < 8.8.53370
  • MEDIUM4.8CVE-2024-45960Zenario allows authenticated admin users to upload PDF files containing malicious code
    from 0, <= 9.7.61188
  • MEDIUM4.8CVE-2021-41952Cross-site Scripting in Zenario CMS
    from 0, < 9.0.55143
  • MEDIUM4.8CVE-2021-27673reflected XSS in tribalsystems/zenario
    from 0, < 8.8.53370