CVE-2019-6992

Published: Jan 28, 2019

Modified: Sep 17, 2024

PUBLISHED

Description

A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in a vulnerable field via a long NAME or PROTOCOL to the index.php?view=controlcaps URI.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/ZoneMinder/zoneminder/issues/2445

x_refsource_MISC

https://github.com/ZoneMinder/zoneminder/commit/8c5687ca308e441742725e0aff9075779fa1a498

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-6992

Description

Affected Products

References