4 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-8425
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages. CVE-2019-8425 Note that Nessus relies on the presence of the...
CVE-2019-8425
includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages...
CVE-2019-8425
ZoneMinder contains a cross-site scripting (XSS) vulnerability in the SQL-ERR message construction within includes/database.php for versions prior to 1.32.3. The issue arises from how error messages are generated, allowing injected script in the browser of an affected user. Affected product: Zone...
CVE-2019-8425
includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages...