CVE-2018-18005
Summary: CVE-2018-18005 affects VIVOTEK Network Camera Series devices. The vulnerability is a cross-site scripting (XSS) flaw in the JavaScript file event_script.js, exploitable on firmware versions 0x06x to 0x08x. A remote attacker can cause arbitrary JavaScript execution by supplying a crafted ...