Niccolo Picca

**Name of the Vulnerable Software and Affected Versions** ZoneMinder versions prior to 1.34.21 **Description** The issue allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the `PHP SELF` component in the `classic/views/download.php` file. This is a Cross Site Scripting (XSS) vulnerability. **Recommendations** For versions prior to 1.34.21, update to version 1.34.21 or later to resolve the issue. As a temporary workaround, consider restricting access to the `classic/views/download.php` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ZoneMinder versions prior to 1.34.21 **Description** The issue allows for XSS via the `connkey` parameter to "download.php" or "export.php" API endpoints. **Recommendations** For versions prior to 1.34.21, update to version 1.34.21 or later to resolve the issue. As a temporary workaround, consider restricting access to the "download.php" and "export.php" API endpoints to minimize the risk of exploitation. Avoid using the `connkey` parameter in these endpoints until the issue is resolved.