CVE-2018-18005

Publication date

2019-01-03 20:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting in event_script.js in VIVOTEK Network Camera Series products with firmware 0x06x to 0x08x allows remote attackers to execute arbitrary JavaScript via a URL query string parameter.