|
Description
|
|
(:A cross-site scripting vulnerability was reported in ZoneMinder.:A remote attacker could exploit it by enticing their victim into following a specially crafted link in order to execute arbitrary JavaScript or HTML code.::This vulnerability located in the "ZoneMinder-master/web/skins/classic/views/js/postlogin.js.php" source file, stems from improper user-input sanitization.::A proof of concept is available.::The zoneminder packages provided by Debian Wheezy 7 are vulnerable.)
|
