3 matches found
Lexmark International X1185 Improper Privilege Management (CVE-2006-0577)
Lexmark X1185 printer allows local users to gain SYSTEM privileges by navigating to the Appearance dialog and selecting the Additional styles skins are available on the Lexmark web site option, which launches a web browser that is running with SYSTEM privileges. This plugin only works with...
ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2019-04689)
ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. A cross-site scripting vulnerability exists in the web/skins/classic/views/controlcaps.php file in ZoneMinder 1.32.3 and earlier versions, which stems from the program's failu...
DEBIAN-CVE-2017-7203
A Cross-Site Scripting XSS was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data postLoginQuery passed to the "ZoneMinder-master/web/skins/classic/views/js/postlogin.js.php" URL. An attacker could execute arbitrary HTML and scrip...