CVE-2019-7325 (zoneminder)

admin

5년 ago

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as multiple views under web/skins/classic/views insecurely utilize $_REQUEST[‘PHP_SELF’], without applying any proper filtration.

Source: CVE-2019-7325 (zoneminder)