Description
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper input validation, the C-MOR web interface is vulnerable to reflected cross-site scripting (XSS) attacks. It was found out that different functions are prone to reflected cross-site scripting attacks due to insufficient user input validation.
References
www.syss.de/...te/Publikationen/Advisories/SYSS-2024-020.txt
www.syss.de/...rwachungssoftware-c-mor-syss-2024-020-bis-030
