Debian Zoneminder vulnerabilities

CVE-2022-39285 [HIGH] CVE-2022-39285: zoneminder - ZoneMinder is a free, open source Closed-circuit television software application... ZoneMinder is a free, open source Closed-circuit television software application The file parameter is vulnerable to a cross site scripting vulnerability (XSS) by backing out of the current "tr" "td" brackets. This then allows a malicious user to provide code that will execute when a user views the specific log on the "view=log" page. This vulnerability allows an

CVE-2022-1726 [MEDIUM] CVE-2022-1726: zoneminder - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions:... Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2022-39289 [CRITICAL] CVE-2022-39289: zoneminder - ZoneMinder is a free, open source Closed-circuit television software application... ZoneMinder is a free, open source Closed-circuit television software application. In affected versions the ZoneMinder API Exposes Database Log contents to user without privileges, allows insertion, modification, deletion of logs without System Privileges. Users are advised yo upgrade as soon as possible. Users unable to upgrade should disable database logging

CVE-2022-30768 [MEDIUM] CVE-2022-30768: zoneminder - A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12 allows an attack... A Stored Cross Site Scripting (XSS) issue in ZoneMinder 1.36.12 allows an attacker to execute HTML or JavaScript code via the Username field when an Admin (or non-Admin users that can see other users logged into the platform) clicks on Logout. NOTE: this exists in later versions than CVE-2019-7348 and requires a different attack method. Scope: local bookworm: o

CVE-2020-25730 [HIGH] CVE-2020-25730: zoneminder - Cross Site Scripting (XSS) vulnerability in ZoneMinder before version 1.34.21, a... Cross Site Scripting (XSS) vulnerability in ZoneMinder before version 1.34.21, allows remote attackers execute arbitrary code, escalate privileges, and obtain sensitive information via PHP_SELF component in classic/views/download.php. Scope: local bookworm: resolved (fixed in 1.34.21-1) bullseye: resolved (fixed in 1.34.21-1) forky: resolved (fixed in 1.34.21-1)

CVE-2020-25729 [MEDIUM] CVE-2020-25729: zoneminder - ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or e... ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php. Scope: local bookworm: resolved (fixed in 1.34.21-1) bullseye: resolved (fixed in 1.34.21-1) forky: resolved (fixed in 1.34.21-1) sid: resolved (fixed in 1.34.21-1) trixie: resolved (fixed in 1.34.21-1)

CVE-2019-6991 [CRITICAL] CVE-2019-6991: zoneminder - A classic Stack-based buffer overflow exists in the zmLoadUser() function in zm_... A classic Stack-based buffer overflow exists in the zmLoadUser() function in zm_user.cpp of the zmu binary in ZoneMinder through 1.32.3, allowing an unauthenticated attacker to execute code via a long username. Scope: local bookworm: resolved (fixed in 1.32.3-2) bullseye: resolved (fixed in 1.32.3-2) forky: resolved (fixed in 1.32.3-2) sid: resolved (fixed in 1

CVE-2019-6777 [MEDIUM] CVE-2019-6777: zoneminder - An issue was discovered in ZoneMinder v1.32.3. Reflected XSS exists in web/skins... An issue was discovered in ZoneMinder v1.32.3. Reflected XSS exists in web/skins/classic/views/plugin.php via the zm/index.php?view=plugin pl parameter. Scope: local bookworm: resolved (fixed in 1.32.3-2) bullseye: resolved (fixed in 1.32.3-2) forky: resolved (fixed in 1.32.3-2) sid: resolved (fixed in 1.32.3-2) trixie: resolved (fixed in 1.32.3-2)

CVE-2019-6992 [MEDIUM] CVE-2019-6992: zoneminder - A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ZoneMinde... A stored-self XSS exists in web/skins/classic/views/controlcaps.php of ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in a vulnerable field via a long NAME or PROTOCOL to the index.php?view=controlcaps URI. Scope: local bookworm: resolved (fixed in 1.32.3-2) bullseye: resolved (fixed in 1.32.3-2) forky: resolved (fixed in 1.32.

CVE-2019-6990 [MEDIUM] CVE-2019-6990: zoneminder - A stored-self XSS exists in web/skins/classic/views/zones.php of ZoneMinder thro... A stored-self XSS exists in web/skins/classic/views/zones.php of ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in a vulnerable field via a crafted Zone NAME to the index.php?view=zones&action=zoneImage&mid=1 URI. Scope: local bookworm: resolved (fixed in 1.32.3-2) bullseye: resolved (fixed in 1.32.3-2) forky: resolved (fixed i

CVE-2019-13072 [MEDIUM] CVE-2019-13072: zoneminder - Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malici... Stored XSS in the Filters page (Name field) in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to this page. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid: resolved (fixed in 1.34.6-1) trixie: resolved (fix

CVE-2019-8423 [CRITICAL] CVE-2019-8423: zoneminder - ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.p... ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2019-8426 [MEDIUM] CVE-2019-8426: zoneminder - skins/classic/views/controlcap.php in ZoneMinder before 1.32.3 has XSS via the n... skins/classic/views/controlcap.php in ZoneMinder before 1.32.3 has XSS via the newControl array, as demonstrated by the newControl[MinTiltRange] parameter. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid: resolved (fixed in 1.34.6-1) trixie: resolved (fixed in 1.34.6-1)

CVE-2019-7337 [MEDIUM] CVE-2019-7337: zoneminder - Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 as the ... Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 as the view 'events' (events.php) insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader() in functions.php, which insecurely returns the value of the limit query string parameter without applying any

CVE-2019-8428 [CRITICAL] CVE-2019-8428: zoneminder - ZoneMinder before 1.32.3 has SQL Injection via the skins/classic/views/control.p... ZoneMinder before 1.32.3 has SQL Injection via the skins/classic/views/control.php groupSql parameter, as demonstrated by a newGroup[MonitorIds][] value. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid: resolved (fixed in 1.34.6-1) trixie: resolved (fixed in 1.34.6-1)

CVE-2019-7352 [MEDIUM] CVE-2019-7352: zoneminder - Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as... Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the view 'state' (aka Run State) (state.php) does no input validation to the value supplied to the 'New State' (aka newState) field, allowing an attacker to execute HTML or JavaScript code. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) for

CVE-2019-7338 [MEDIUM] CVE-2019-7338: zoneminder - Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to e... Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view 'group' as it insecurely prints the 'Group Name' value on the web page without applying any proper filtration. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid:

CVE-2019-7325 [MEDIUM] CVE-2019-7325: zoneminder - Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as mul... Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as multiple views under web/skins/classic/views insecurely utilize $_REQUEST['PHP_SELF'], without applying any proper filtration. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid: resolved (fixed in 1.34.6-1)

CVE-2019-7328 [MEDIUM] CVE-2019-7328: zoneminder - Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowi... Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'scale' parameter value in the view frame (frame.php) via /js/frame.js.php because proper filtration is omitted. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolve

CVE-2019-7339 [MEDIUM] CVE-2019-7339: zoneminder - POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing ... POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'level' parameter value in the view log (log.php) because proper filtration is omitted. Scope: local bookworm: resolved (fixed in 1.34.6-1) bullseye: resolved (fixed in 1.34.6-1) forky: resolved (fixed in 1.34.6-1) sid: r