Zenario before 9.5.60437 uses Twig filters insecurely in the Twig Snippet plugin, and in the site-wide HEAD and BODY elements, enabling code execution by a designer or an administrator.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| tribalsystems/zenario(Packagist) | 0 | 9.5.60437 | N/A |
CVSS Metrics
