Cross-site request forgery (CSRF) vulnerability in Zoneminder 1.30 and previous versions allows remote malicious users to hijack the authentication of users for requests that change passwords and possibly have unspecified other impact as demonstrated by a crafted user action request to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zoneminder zoneminder |