SecuritySpace - CVE-2017-7203

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-7203

Description: A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder- master/web/skins/classic/views/js/postlogin.js.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

Test IDs: 1.3.6.1.4.1.25623.1.0.106682

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-7203
BugTraq ID: 97001
http://www.securityfocus.com/bid/97001

CVE ID:	CVE-2017-7203
Description:	A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder- master/web/skins/classic/views/js/postlogin.js.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
Test IDs:	1.3.6.1.4.1.25623.1.0.106682
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7203 BugTraq ID: 97001 http://www.securityfocus.com/bid/97001