Lucene search
Ubuntu.comUB:CVE-2022-30768HistoryNov 15, 2022 - 12:00 a.m.
CVE-2022-30768
2022-11-1500:00:00
ubuntu.com
ubuntu.com
14
0.001 Low
EPSS
Percentile
20.3%
A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12 allows an
attacker to execute HTML or JavaScript code via the Username field when an
Admin (or non-Admin users that can see other users logged into the
platform) clicks on Logout. NOTE: this exists in later versions than
CVE-2019-7348 and requires a different attack method.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 20.04 | noarch | zoneminder | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | zoneminder | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | zoneminder | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | zoneminder | < any | UNKNOWN |
| ubuntu | 16.04 | noarch | zoneminder | < any | UNKNOWN |
Related
cvelist
cvelist
CVE-2022-30768
2022-11-15 00:00:00
CVE-2019-7348
2022-10-03 16:19:27
osv
osv
CVE-2022-30768
2022-11-15 22:15:11
CVE-2019-7348
2019-02-04 19:29:01
debiancve
debiancve
CVE-2022-30768
2022-11-15 22:15:00
CVE-2019-7348
2019-02-04 19:29:00
prion
prion
Cross site scripting
2022-11-15 22:15:00
Cross site scripting
2019-02-04 19:29:00
cve
cve
CVE-2022-30768
2022-11-15 22:15:00
CVE-2019-7348
2019-02-04 19:29:00
ubuntucve
ubuntucve
CVE-2019-7348
2019-02-04 00:00:00
veracode
veracode
Cross Site Scripting (XSS)
2021-09-30 05:57:15
cnvd
cnvd
ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57803)
2022-04-01 00:00:00
alpinelinux
alpinelinux
CVE-2019-7348
2019-02-04 19:29:00
openvas
openvas
ZoneMinder < 1.36.13 Multiple Vulnerabilities
2022-11-23 00:00:00
ZoneMinder < 1.34.0 Multiple Vulnerabilities
2019-02-05 00:00:00