CVE Tools

tribalsystems

Web & CMS Pluginscommercial

10

Cumulative CVEs

2

Monthly snapshots

#106

Peak rank

Top products

Latest CVEs

The 15 most recently published vulnerabilities affecting tribalsystems.

CVE-2024-45964Zenario 9.7.61188 is vulnerable to Cross Site Scripting (XSS) in the Image library via the "Organizer tags" field.4.8Oct 2, 2024
CVE-2024-45960Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site...4.8Oct 2, 2024
CVE-2023-44769A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows a local attacker to execute arbitrary code via a crafted script to the Spare aliases from Alias.5.4Oct 24, 2023
CVE-2023-44771A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows a local attacker to execute arbitrary code via a crafted script to the Page Layout.5.4Oct 6, 2023
CVE-2023-44770A Cross-Site Scripting (XSS) vulnerability in Zenario CMS v.9.4.59197 allows an attacker to execute arbitrary code via a crafted script to the Organizer - Spare alias.5.4Oct 6, 2023
CVE-2023-39578A stored cross-site scripting (XSS) vulnerability in the Create function of Zenario CMS v9.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Menu n...4.8Aug 28, 2023
CVE-2022-44136Zenario CMS 9.3.57186 is vulnerable to Remote Code Excution (RCE).9.8Nov 30, 2022
CVE-2022-4231Tribal Systems Zenario CMS Remember Me session fixiation4.2Nov 30, 2022
CVE-2022-44073Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via svg,Users & Contacts.5.4Nov 16, 2022
CVE-2022-44071Zenario CMS 9.3.57186 is is vulnerable to Cross Site Scripting (XSS) via profile.5.4Nov 16, 2022
CVE-2022-44070Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via News articles.5.4Nov 16, 2022
CVE-2022-44069Zenario CMS 9.3.57186 is vulnerable to Cross Site Scripting (XSS) via the Nest library module.5.4Nov 16, 2022
CVE-2020-36608Tribal Systems Zenario CMS Error Log Module admin_organizer.js cross site scripting3.5Nov 2, 2022
CVE-2021-41952Zenario CMS 9.0.54156 is vulnerable to Cross Site Scripting (XSS) via upload file to *.SVG. An attacker can send malicious files to victims and steals victim's cookie leads to account takeover. The...4.8Mar 14, 2022
CVE-2021-42171Zenario CMS 9.0.54156 is vulnerable to File Upload. The web server can be compromised by uploading and executing a web-shell which can run commands, browse system files, browse local resources, att...7.2Mar 14, 2022