Lucene search
K

27 matches found

OSV
OSV
added 2019/02/04 7:29 p.m.17 views

CVE-2019-7341

Reflected - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'newMonitorLinkedMonitors' parameter value in the view monitor monitor.php because proper filtration is omitted...

6.1CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2019/02/04 7:29 p.m.25 views

CVE-2019-7332

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' aka Event ID parameter value in the view download download.php because proper filtration is omitted...

6.1CVSS5.9AI score0.009EPSS
Exploits1References1
NVD
NVD
added 2019/02/04 7:29 p.m.22 views

CVE-2019-7339

POST - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'level' parameter value in the view log log.php because proper filtration is omitted...

6.1CVSS5.9AI score0.00874EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2019/02/04 7:29 p.m.29 views

CVE-2019-7343

Reflected - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'newMonitorMethod' parameter value in the view monitor monitor.php because proper filtration is omitted...

6.1CVSS7AI score0.00878EPSS
Exploits1References2
NVD
NVD
added 2019/02/04 7:29 p.m.24 views

CVE-2019-7326

Self - Stored Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Host' parameter value in the view console console.php because proper filtration is omitted. This relates to the index.php?view=monitor Host Name...

6.1CVSS5.9AI score0.009EPSS
Exploits1References1
NVD
NVD
added 2019/02/04 7:29 p.m.24 views

CVE-2019-7330

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame frame.php because proper filtration is omitted...

6.1CVSS5.9AI score0.009EPSS
Exploits1References1
Prion
Prion
added 2019/02/04 7:29 p.m.17 views

Cross site scripting

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame frame.php because proper filtration is omitted...

4.3CVSS6AI score0.009EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/02/04 7:29 p.m.25 views

CVE-2019-7334

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Exportfile' parameter value in the view export export.php because proper filtration is omitted...

6.1CVSS7AI score0.00873EPSS
Exploits1References2
Prion
Prion
added 2019/02/04 7:29 p.m.20 views

Cross site scripting

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' aka Event ID parameter value in the view download download.php because proper filtration is omitted...

4.3CVSS6AI score0.009EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/04 7:29 p.m.19 views

Cross site scripting

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'newMonitorV4LCapturesPerFrame' parameter value in the view monitor monitor.php because proper filtration is omitted...

4.3CVSS5.9AI score0.00873EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/02/04 7:29 p.m.23 views

CVE-2019-7334

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Exportfile' parameter value in the view export export.php because proper filtration is omitted...

6.1CVSS5.9AI score0.00873EPSS
Exploits1References1
Prion
Prion
added 2019/02/04 7:29 p.m.19 views

Cross site scripting

Self - Stored Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Host' parameter value in the view console console.php because proper filtration is omitted. This relates to the index.php?view=monitor Host Name...

4.3CVSS6AI score0.009EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/02/04 7:29 p.m.15 views

Cross site scripting

Reflected - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'newMonitorLinkedMonitors' parameter value in the view monitor monitor.php because proper filtration is omitted...

4.3CVSS5.9AI score0.00873EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2019/02/04 7:29 p.m.20 views

CVE-2019-7330

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame frame.php because proper filtration is omitted...

6.1CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2019/02/04 7:29 p.m.16 views

Cross site scripting

POST - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'level' parameter value in the view log log.php because proper filtration is omitted...

4.3CVSS5.9AI score0.00874EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/02/04 7:0 p.m.26 views

CVE-2019-7326

Self - Stored Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Host' parameter value in the view console console.php because proper filtration is omitted. This relates to the index.php?view=monitor Host Name...

6.8AI score0.009EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/04 7:0 p.m.30 views

CVE-2019-7348

Self - Stored Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'username' parameter value in the view user user.php because proper filtration is omitted...

5.5AI score0.00769EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/02/04 7:0 p.m.23 views

CVE-2019-7340

POST - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'filterQueryterms0val' parameter value in the view filter filter.php because proper filtration is omitted...

6.2AI score0.00873EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2019/02/04 7:0 p.m.33 views

CVE-2019-7328

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'scale' parameter value in the view frame frame.php via /js/frame.js.php because proper filtration is omitted...

6.1CVSS2.3AI score0.009EPSS
Exploits1
Debian CVE
Debian CVE
added 2019/02/04 7:0 p.m.25 views

CVE-2019-7330

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame frame.php because proper filtration is omitted...

6.1CVSS2.2AI score0.009EPSS
Exploits1
Rows per page
Query Builder