CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-45960

Zenario 9.7.61188 allows authenticated admin users to upload PDF files containing malicious code into the target system. If the PDF file is accessed through the website, it can trigger a Cross Site Scripting (XSS) attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 9.9%

CVSS Severity

CVSS v3 Score 4.8

References

https://grimthereaperteam.medium.com/zenario-9-7-9-7-61188-malicious-file-upload-xss-in-pdf-eb11729fe059

Products affected by CVE-2024-45960

Tribalsystems » Zenario » Version: 9.7.61188

cpe:2.3:a:tribalsystems:zenario:9.7.61188

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45960

Products

Pricing

Contact Us