CVE-2022-44070

Name of the Vulnerable Software and Affected Versions Zenario CMS version 9.3.57186

Description The issue is related to Cross Site Scripting (XSS) via News articles. This means that an attacker could potentially inject malicious scripts into news articles, which could then be executed by users' browsers, leading to unauthorized actions or data theft.

Recommendations For Zenario CMS version 9.3.57186, consider disabling the News article feature until a patch is available to prevent potential XSS attacks. Restrict access to editing News articles to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.