CVE-2024-45964: Zenario Cross Site Scripting in the Image library

October 2, 2024

Zenario 9.7.61188 is vulnerable to Cross Site Scripting (XSS) in the Image library via the “Organizer tags” field.

References

github.com/TribalSystems/Zenario
github.com/advisories/GHSA-2cc5-429x-p387
grimthereaperteam.medium.com/zenario-9-7-61188-reflect-xss-bee4ab9187e7
nvd.nist.gov/vuln/detail/CVE-2024-45964

Code Behaviors & Features

Detect and mitigate CVE-2024-45964 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →