Oval Definition:	oval:com.ubuntu.trusty:def:20197339000
Revision Date: 2019-02-04 Version: 1 Title: CVE-2019-7339 on Ubuntu 14.04 LTS (trusty) - high. Description: POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'level' parameter value in the view log (log.php) because proper filtration is omitted. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-7339 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The vulnerability of the 'zoneminder' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.
BACK