Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:32308
HistorySep 30, 2021 - 5:57 a.m.

Cross-Site Request Forgery (CSRF)

2021-09-3005:57:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4

0.001 Low

EPSS

Percentile

43.5%

ZoneMinder is vulnerable to cross-site request forgery. Whenever a CSRF check fails, a callback function is called displaying a “Try again” button, which allows resending the failed request, making the CSRF attack successful.

0.001 Low

EPSS

Percentile

43.5%