PT-2022-27096 · Unknown+1 · Zenario Cms+1
Hieuminhnv
·
Published
2022-11-16
·
Updated
2022-11-17
·
CVE-2022-44069
CVSS v3.1
5.4
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Zenario CMS version 9.3.57186
Description
The issue is related to Cross Site Scripting (XSS) via the Nest library module.
Recommendations
For Zenario CMS version 9.3.57186, consider disabling the Nest library module as a temporary workaround until a patch is available. Restrict access to the module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nest
Zenario Cms