CVE

CVE-2024-34461

Severity:

Pending analysis

Type:

Unavailable / Other

Publication date:

04/05/2024

Last modified:

06/05/2024

Description

Zenario before 9.5.60437 uses Twig filters insecurely in the Twig Snippet plugin, and in the site-wide HEAD and BODY elements, enabling code execution by a designer or an administrator.

References to Advisories, Solutions, and Tools

https://zenar.io/zenario-9/blog/zenario-9560437-patch-released