ZoneMinder is an open source video surveillance software system. ZoneMinder 1.32.3 and previous versions have a cross-site scripting vulnerability, which stems from the program not being properly filtered, and can be exploited by remote attackers to execute HTML or JavaScript code with the help of the ‘eid’ parameter.