Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

51 – 60 of 85 results

CVE-2019-7335

Medium priority
Vulnerable

Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view 'log' as it insecurely prints the 'Log Message' value on the web page without applying any...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Vulnerable Vulnerable Vulnerable Not in release Vulnerable
Show less packages

CVE-2019-7334

Medium priority
Vulnerable

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Exportfile' parameter value in the view export (export.php) because...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Vulnerable Vulnerable Vulnerable Not in release Vulnerable
Show less packages

CVE-2019-7333

Medium priority
Vulnerable

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Exportfile' parameter value in the view download (download.php) because proper...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Vulnerable Vulnerable Vulnerable Not in release Not affected
Show less packages

CVE-2019-7332

Medium priority

Some fixes available 1 of 7

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'eid' (aka Event ID) parameter value in the view download (download.php) because...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Not affected
Show less packages

CVE-2019-7331

Medium priority

Some fixes available 2 of 8

Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 while editing an existing monitor field named "signal check color" (monitor.php). There exists no input validation or output filtration, leaving it...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Fixed
Show less packages

CVE-2019-7330

Medium priority

Some fixes available 1 of 7

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'show' parameter value in the view frame (frame.php) because proper filtration is omitted.

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Not affected
Show less packages

CVE-2019-7329

Medium priority

Some fixes available 2 of 8

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the form action on multiple views utilizes $_SERVER['PHP_SELF'] insecurely, mishandling any arbitrary input appended to the webroot URL, without any...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Fixed
Show less packages

CVE-2019-7328

Medium priority

Some fixes available 1 of 7

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'scale' parameter value in the view frame (frame.php) via /js/frame.js.php because...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Not affected
Show less packages

CVE-2019-7327

Medium priority

Some fixes available 1 of 7

Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'scale' parameter value in the view frame (frame.php) because proper filtration is omitted.

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Not affected
Show less packages

CVE-2019-7326

Medium priority

Some fixes available 1 of 7

Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Host' parameter value in the view console (console.php) because proper...

1 affected packages

zoneminder

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
zoneminder Not affected Not affected Fixed Not in release Not affected
Show less packages
  1. Previous page
  2. 4
  3. 5
  4. 6
  5. 7
  6. 8
  7. Next page
Export to JSON