CVE-2020-25729

CVE-2020-25729

EPSS 1.2%

ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forums.zoneminder.com/viewforum.php?f=1 https://github.com/ZoneMinder/zoneminder/commit/9268db14a79c4ccd444c2bf8d24e62b13207b413 https://github.com/ZoneMinder/zoneminder/releases/tag/1.34.21