CVE-2020-25730 | ZoneMinder up to 1.34.20 download.php PHP_SELF cross site scripting

Posted by Angelo Barbosa | Apr 4, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in ZoneMinder up to 1.34.20. This issue affects some unknown processing of the file classic/views/download.php. The manipulation of the argument PHP_SELF leads to cross site scripting.

The identification of this vulnerability is CVE-2020-25730. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2020-25730 | ZoneMinder up to 1.34.20 download.php PHP_SELF cross site scripting

Related Posts

CVE-2024-33642 | EkoJR Advanced Post List Plugin up to 0.5.6.1 on WordPress cross site scripting

CVE-2023-47022 | NCR Terminal Handler 1.5.1 Script payload Privilege Escalation

CVE-2023-5966 | EspoCRM up to 7.5.2 ZIP File unrestricted upload

CVE-2024-36015 | Linux Kernel up to 6.9 ppdev register_device return value (fbf740aeb86a)