CVE-2021-42171

Name of the Vulnerable Software and Affected Versions Zenario CMS version 9.0.54156

Description The issue allows an attacker to compromise the web server by uploading and executing a web-shell, which can be used to run commands, browse system files, browse local resources, attack other servers, and exploit local vulnerabilities.

Recommendations For Zenario CMS version 9.0.54156, consider restricting file upload capabilities to prevent the execution of malicious scripts until a fix is available. As a temporary workaround, monitor file uploads closely and restrict access to sensitive system files and resources.