![Reflected XSS Vulnerability in ZoneMinder 1.32.3: Unfiltered Execution of HTML/JavaScript Code in 'filter[Name]' Field](/i/breach.jpg)
Reflected XSS Vulnerability in ZoneMinder 1.32.3: Unfiltered Execution of HTML/JavaScript Code in 'filter[Name]' Field
CVE-2019-7344 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:N
Reflected XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view 'filter' as it insecurely prints the 'filter[Name]' (aka Filter name) value on the web page without applying any proper filtration.
Learn more about our Web App Pen Testing.