Cross-Site Scripting (XSS) Vulnerability in SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B)

CVE-2018-12672 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

The SV3C HD Camera (L-SERIES V2.3.4.2103-S50-NTD-B20170508B) does not perform proper validation on user-supplied input and is vulnerable to cross-site scripting attacks. If proper authorization was implemented, this vulnerability could be leveraged to perform actions on behalf of another user or the administrator.

Learn more about our User Device Pen Test.