Cross-site Scripting (XSS)

zoneminder:edge is vulnerable to cross-site scripting. An attacker is able to execute HTML or JavaScript code in the view ‘filter’ as it insecurely prints the ‘filter[Name]’ (aka Filter name) value on the web page without applying any proper filtration.