Lucene search
K

4 matches found

NVD
NVD
added 2019/02/04 7:29 p.m.17 views

CVE-2019-7337

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3 as the view 'events' events.php insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader in functions.php, which insecurely returns the...

4.8CVSS4.9AI score0.00677EPSS
Exploits1References1
OSV
OSV
added 2019/02/04 7:29 p.m.17 views

CVE-2019-7337

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3 as the view 'events' events.php insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader in functions.php, which insecurely returns the...

4.8CVSS5.9AI score
Exploits0References1
CVE
CVE
added 2019/02/04 7:0 p.m.92 views

CVE-2019-7337

CVE-2019-7337 affects ZoneMinder up to version 1.32.3, where the view 'events' (events.php) insecurely displays the limit query parameter without proper output filtration. The root cause is the function sortHeader() in functions.php, which returns the limit parameter value without filtration, ena...

4.8CVSS5AI score0.00677EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2019/02/04 7:0 p.m.21 views

CVE-2019-7337

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3 as the view 'events' events.php insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader in functions.php, which insecurely returns the...

4.8CVSS1.3AI score0.00677EPSS
Exploits1
Rows per page
Query Builder