CVE

CVE-2019-7331

admin

CVE-2019-7331

Self – Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 while editing an existing monitor field named "signal check color" (monitor.php). There exists no input validation or output filtration, leaving it vulnerable to HTML Injection and an XSS attack.

Source: CVE-2019-7331

Exit mobile version