CVE-2021-47731 Selea Targa IP Camera Developer Backdoor Configuration Overwrite

Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite...

CVE-2021-47731

CVE-2021-47731 affects the Selea Targa IP OCR-ANPR Camera. The vulnerability is a hard-coded developer password that allows unauthorized configuration access via an undocumented endpoint, exploitable with the password Selea781830 to enable configuration upload and overwrite device settings. Docum...

CVE-2021-47730 Selea Targa IP Camera Cross-Site Request Forgery via Admin Creation

Selea Targa IP OCR-ANPR Camera contains a cross-site request forgery vulnerability that allows attackers to create administrative users without authentication. Attackers can craft a malicious web page that submits a form to add a new admin user with full system privileges when a logged-in user...

CVE-2021-47730

CVE-2021-47730 affects Selea Targa IP OCR-ANPR Camera and is a cross-site request forgery that allows an attacker to create an admin user without authentication. The provided documents state that a malicious page can submit a form to add a new administrator with full system privileges when a logg...

CVE-2021-47729 Selea Targa IP Camera Stored Cross-Site Scripting via Files List

Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'fileslist' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/getfile.php with crafted payload to execute arbitrary scripts in victim's...

CVE-2021-47729 Selea Targa IP Camera Stored Cross-Site Scripting via Files List

Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'fileslist' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/getfile.php with crafted payload to execute arbitrary scripts in victim's...

CVE-2021-47729

The CVE-2021-47729 entry concerns the Selea Targa IP OCR-ANPR Camera and documents a stored cross-site scripting (XSS) vulnerability in the files_list parameter. The underlying issue allows an attacker to craft a payload sent via POST to /cgi-bin/get_file.php to inject HTML/script code, resulting...

CVE-2021-47728 Selea Targa IP Camera Remote Code Execution via Utils

Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell commands. Attackers can exploit the 'addr' and 'port' parameters to inject commands and gain www-data user access through chained local...

CVE-2021-47728 Selea Targa IP Camera Remote Code Execution via Utils

Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell commands. Attackers can exploit the 'addr' and 'port' parameters to inject commands and gain www-data user access through chained local...

CVE-2021-47727 Selea Targa IP Camera Unauthenticated Stream Disclosure

Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage...

CVE-2021-47727 Selea Targa IP Camera Unauthenticated Stream Disclosure

Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage...

CVE-2021-47727

CVE-2021-47727 affects the Selea Targa IP OCR-ANPR Camera. The connected documents provide concrete details: an unauthenticated vulnerability that allows remote attackers to access live video streams by directly connecting to RTP/RTSP or M-JPEG endpoints (notably p1.mjpg and p1.264). This is desc...

CVE-2025-62570

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally...

CVE-2025-62570

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally...

CVE-2025-62570 Windows Camera Frame Server Monitor Information Disclosure Vulnerability

...

EUVD-2025-202209

Improper access control in Windows Camera Frame Server Monitor allows an authorized attacker to disclose information locally...

CVE-2025-62570 Windows Camera Frame Server Monitor Information Disclosure Vulnerability

...

CVE-2025-62570

CVE-2025-62570 is an information-disclosure vulnerability in Windows "Camera Frame Server Monitor." The initial description confirms improper access control allowing an authorized, local attacker to disclose information. Connected Microsoft advisories (MSRC) and NCSC/NV/KB entries indicate this C...

CVE-2025-66321

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-66320

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability...