CVE-2016-10201

Опубликовано: 03 мар. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter in a download log request to index.php.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	DNE
cosmic	not-affected	1.30.4+dfsg-1
devel	not-affected	1.30.4+dfsg-1
disco	not-affected	1.30.4+dfsg-1
eoan	not-affected	1.30.4+dfsg-1
esm-apps/focal	not-affected	1.30.4+dfsg-1
esm-apps/jammy	not-affected	1.30.4+dfsg-1
esm-apps/noble	not-affected	1.30.4+dfsg-1
esm-apps/xenial	needed

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

CVE-2016-10201

CVSS3: 6.1

nvd

почти 9 лет назад

Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter in a download log request to index.php.

CVE-2016-10201

CVSS3: 6.1

debian

почти 9 лет назад

Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlie ...

GHSA-456m-9wp2-mxg3

CVSS3: 6.1

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter in a download log request to index.php.

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2016-10201

Описание

Пакет zoneminder

Ссылки на источники

Связанные уязвимости