VYPR
Unrated severityOSV Advisory· Published Feb 4, 2019· Updated Sep 17, 2024

CVE-2019-7331

CVE-2019-7331

Description

Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 while editing an existing monitor field named "signal check color" (monitor.php). There exists no input validation or output filtration, leaving it vulnerable to HTML Injection and an XSS attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zoneminder/ZoneminderOSV2 versions
    1.32.3, v1.25, v1.26.0, …+ 1 more
    • (no CPE)range: 1.32.3, v1.25, v1.26.0, …
    • (no CPE)range: <=1.32.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.