tribalsystems/zenario Security Advisories for 9.5.60240 (4)
-
[LOW] Zenario Cross Site Scripting in the Image library
PKSA-626r-ptwv-5msz CVE-2024-45964 GHSA-2cc5-429x-p387
Affected version: <=9.7.61188
Reported by:
GitHub -
[LOW] Zenario allows authenticated admin users to upload PDF files containing malicious code
PKSA-jm4c-kd3j-5hgr CVE-2024-45960 GHSA-3636-hx62-pv26
Affected version: <=9.7.61188
Reported by:
GitHub -
[CRITICAL] Zenario uses Twig filters insecurely in the Twig Snippet plugin
PKSA-2vff-jckp-41b9 CVE-2024-34461 GHSA-hr2r-w6wc-25pv
Affected version: <9.5.60437
Reported by:
GitHub -
[MEDIUM] Zenario's Tree Explorer tool from Organizer affected by Cross-site Scripting
PKSA-7y52-wyc4-jh5d CVE-2024-34460 GHSA-7qwj-gcjf-828f
Affected version: <9.5.60602
Reported by:
GitHub