[FOXMOLE SA 2016-07-05] ZoneMinder – Multiple Issues

Posted by FOXMOLE Advisories on Feb 02

=== FOXMOLE – Security Advisory 2016-07-05 ===

Zoneminder multiple vulnerabilities
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Affected Versions
=================
Zoneminder 1.29,1.30

Issue Overview
==============
Vulnerability Type: SQL Injection, Cross Site Scripting, Session Fixation, No CSRF Protection
Technical Risk: high
Likelihood of Exploitation: medium
Vendor: Zoneminder
Vendor URL: https://zoneminder.com/
Credits: FOXMOLE employee Tim Herres…

007 Software

[FOXMOLE SA 2016-07-05] ZoneMinder – Multiple Issues

Software and Security Information