EPSS
Percentile
37.8%
zoneminder:edge is vulnerable to cross site scripting (XSS). An attacker is able to execute HTML or JavaScript code via a vulnerable ‘eid’ (aka Event ID) parameter value in the view download (download.php) because proper filtration is omitted.
github.com/ZoneMinder/zoneminder/issues/2442
secdb.alpinelinux.org/edge/community.yaml