Security Advisory

CVE-2019-7335

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-04 19:00:00

Last updated 2024-09-17 00:36:33

Assigner mitre

State PUBLISHED

Description

Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view log as it insecurely prints the Log Message value on the web page without applying any proper filtration. This relates to the view=logs value.

← Browse all CVEs View on cve.org ↗