Lucene search
Veracode Vulnerability DatabaseVERACODE:32304HistorySep 30, 2021 - 5:57 a.m.
Cross Site Scripting (XSS)
2021-09-3005:57:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
zoneminder
cross site scripting
xss
vulnerability
username parameter
html
javascript
filtration omitted
software
EPSS
0.001
Percentile
37.8%
zoneminder:edge is vulnerable to Cross Site Scripting (XSS). It exists in ZoneMinder, allowing an attacker to execute HTML or JavaScript code via a vulnerable ‘username’ parameter value in the view user (user.php) because proper filtration is omitted.
Related
cvelist
cvelist
CVE-2019-7348
2019-02-04 19:00:00
CVE-2022-30768
2022-11-15 00:00:00
alpinelinux
alpinelinux
CVE-2019-7348
2019-02-04 19:29:01
cnvd
cnvd
ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2022-57803)
2022-04-01 00:00:00
osv
osv
CVE-2019-7348
2019-02-04 19:29:01
CVE-2022-30768
2022-11-15 22:15:11
cve
cve
CVE-2019-7348
2019-02-04 19:29:01
CVE-2022-30768
2022-11-15 22:15:11
debiancve
debiancve
CVE-2019-7348
2019-02-04 19:29:01
CVE-2022-30768
2022-11-15 22:15:11
ubuntucve
ubuntucve
CVE-2019-7348
2019-02-04 00:00:00
CVE-2022-30768
2022-11-15 00:00:00
prion
prion
Cross site scripting
2019-02-04 19:29:00
Cross site scripting
2022-11-15 22:15:00
nvd
nvd
CVE-2019-7348
2019-02-04 19:29:01
CVE-2022-30768
2022-11-15 22:15:11
openvas
openvas
ZoneMinder < 1.34.0 Multiple Vulnerabilities
2019-02-05 00:00:00