EPSS
Percentile
33.4%
zoneminder is vulnerable to cross-site scripting. An attacker is able to execute HTML or javascript via web/skins/classic/views/controlcaps.php via a long NAME or PROTOCOL to the index.php?view=controlcaps URI.
github.com/ZoneMinder/zoneminder/commit/8c5687ca308e441742725e0aff9075779fa1a498
github.com/ZoneMinder/zoneminder/issues/2445
secdb.alpinelinux.org/edge/community.yaml