CVE-2016-20032 | ZKTeco ZKAccess Security System 5.3.12252 Request holiday_name/memo cross site scripting (ZSL-2016-5368)

A vulnerability labeled as problematic has been found in ZKTeco ZKAccess Security System 5.3.12252. Affected is an unknown function of the component Request Handler. Executing a manipulation of the argument holiday_name/memo can lead to cross site scripting.

This vulnerability is registered as CVE-2016-20032. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More