Описание
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page.
Ссылки
- ExploitIssue TrackingPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitIssue TrackingPatchThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:zoneminder:zoneminder:1.32.3:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.0027
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
ubuntu
больше 6 лет назад
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page.
CVSS3: 5.4
debian
больше 6 лет назад
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allow ...
CVSS3: 5.4
github
больше 3 лет назад
Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page.
EPSS
Процентиль: 50%
0.0027
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79