2 matches found
ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2019-04689)
ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. A cross-site scripting vulnerability exists in the web/skins/classic/views/controlcaps.php file in ZoneMinder 1.32.3 and earlier versions, which stems from the program's failu...
UBUNTU-CVE-2019-6992
A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in a vulnerable field via a long NAME or PROTOCOL to the index.php?view=controlcaps URI...