EPSS
Percentile
21.4%
zoneminder is vulnerable to cross-site scripting. An attacker is able to execute HTML or javascript via web/skins/classic/views/zones.php via a crafted Zone NAME to the index.php?view=zones&action;=zoneImage∣=1 URI.
github.com/ZoneMinder/zoneminder/commit/a3e8fd4fd5b579865f35aac3b964bc78d5b7a94a
github.com/ZoneMinder/zoneminder/issues/2444
secdb.alpinelinux.org/edge/community.yaml