1264 matches found
Cross-site Scripting (XSS)
zoneminder:edge is vulnerable to cross site scripting XSS. An attacker is able to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame frame.php because proper filtration is omitted...
Cross-site Scripting (XSS)
zoneminder is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validation of $REQUEST'PHPSELF'...
Cross-site Scripting (XSS)
zoneminder:edge is vulnerable to cross site scripting XSS. As the form action on multiple views utilizes $SERVER'PHPSELF' insecurely, it mishandles any arbitrary input appended to the webroot URL, without any proper filtration, leading to XSS...
Cross-site Scripting (XSS)
zoneminder is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validation via a vulnerable 'scale' parameter value in the view frame frame.php via /js/frame.js.php...
Cross-site Scripting (XSS)
zoneminder is vulnerable to cross-site scripting. The vulnerability exists due to a lack of validation via a vulnerable 'Host' parameter value in the view console console.php...
Cross-site Scripting (XSS)
ZoneMinder is vulnerable to cross-site scripting. Reflected XSS exists in web/skins/classic/views/plugin.php via the zm/index.php?view=plugin pl parameter...
ZoneMinder < 1.34.21 Multiple XSS Vulnerabilities
ZoneMinder is prone to multiple cross-site scripting XSS vulnerabilities via the connkey parameter to download.php or export.php. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2020-52938)
ZoneMinder is a free and open source CCTV software application for Linux environments that supports IP, USB and analog cameras. A cross-site scripting vulnerability exists in ZoneMinder version 1.34.21. The vulnerability can be exploited to conduct cross-site scripting attacks via the connkey...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
DEBIAN-CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
Design/Logic Flaw
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
CVE-2020-25729
ZoneMinder prior to 1.34.21 is affected by a cross-site scripting (XSS) vulnerability via the connkey parameter in download.php or export.php. The issue is documented across multiple sources (NVD, RH, CNVD, OSV, etc.) with the same description, indicating the vulnerability stems from unsanitized ...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
CVE-2020-25729
ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php...
ZoneMinder 1.32.3 - Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: ZoneMinder 1.32.3 - Stored Cross Site Scripting filters Google Dork: None Exploit Author: Joey Lane Vendor Homepage: https://zoneminder.com Software Link: https://github.com/ZoneMinder/zoneminder/releases Version: 1.32.3 Tested...
ZoneMinder 1.32.3 - Cross-Site Scripting
ZoneMinder 1.32.3 - Cross-Site Scripting Exploit Title: ZoneMinder 1.32.3 - Stored Cross Site Scripting filters Google Dork: None Date: 6/29/2019 Exploit Author: Joey Lane Vendor Homepage: https://zoneminder.com Software Link: https://github.com/ZoneMinder/zoneminder/releases Version: 1.32.3 Test...
ZoneMinder 1.32.3 - Cross-Site Scripting
Exploit Title: ZoneMinder 1.32.3 - Stored Cross Site Scripting filters Google Dork: None Date: 6/29/2019 Exploit Author: Joey Lane Vendor Homepage: https://zoneminder.com Software Link: https://github.com/ZoneMinder/zoneminder/releases Version: 1.32.3 Tested on: Ubuntu 16.04 CVE : Pending...