hieuminhnv/Zenario-CMS-last-version

hieuminhnv/Zenario-CMS-last-version

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Stars1

Check vuln

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-44071 ↗	Nov 16, 2022Wednesday, 16 November 2022, 16:15	5.4 MEDIUM	—
Zenario CMS 9.3.57186 is is vulnerable to Cross Site Scripting (XSS) via profile.
CVE-2022-44073 ↗	Nov 16, 2022Wednesday, 16 November 2022, 16:15	5.4 MEDIUM	—
Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via svg,Users & Contacts.
CVE-2022-44069 ↗	Nov 16, 2022Wednesday, 16 November 2022, 16:15	5.4 MEDIUM	—
Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via the Nest library module.
CVE-2022-44070 ↗	Nov 16, 2022Wednesday, 16 November 2022, 16:15	5.4 MEDIUM	—
Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via News articles.
CVE-2021-41952 ↗	Mar 14, 2022Monday, 14 March 2022, 15:15	4.8 MEDIUM	3.5 LOW
Zenario CMS 9.0.54156 is vulnerable to Cross Site Scripting (XSS) via upload file to *.SVG. An attacker can send malicious files to victims and steals victim's cookie leads to account takeover. The person viewing the image of a contact can be victim of XSS.
CVE-2021-42171 ↗	Mar 14, 2022Monday, 14 March 2022, 15:15	7.2 HIGH	6.5 MEDIUM
Zenario CMS 9.0.54156 is vulnerable to File Upload. The web server can be compromised by uploading and executing a web-shell which can run commands, browse system files, browse local resources, attack other servers, and exploit the local vulnerabilities, and so forth.