Lucene search
+L

319 matches found

NVD
NVD
added 2024/08/12 9:15 p.m.41 views

CVE-2024-43360

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder is affected by a time-based SQL Injection vulnerability. This vulnerability is fixed in 1.36.34 and 1.37.61...

9.8CVSS0.06222EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2024/08/12 9:15 p.m.47 views

CVE-2024-43359

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale parameters. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.3AI score0.00375EPSS
Exploits0
NVD
NVD
added 2024/08/12 9:15 p.m.30 views

CVE-2024-43359

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale parameters. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS0.00375EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/08/12 9:15 p.m.40 views

CVE-2024-43358

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the filter view via the filterId. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.2AI score0.00331EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/08/12 9:15 p.m.17 views

CVE-2024-43358

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the filter view via the filterId. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS5.8AI score0.00331EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2024/08/12 9:15 p.m.19 views

CVE-2024-43359

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale parameters. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS5.8AI score0.00375EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/08/12 8:55 p.m.88 views

CVE-2024-43360

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder is affected by a time-based SQL Injection vulnerability. This vulnerability is fixed in 1.36.34 and 1.37.61...

9.8CVSS5.8AI score0.06222EPSS
Exploits1
CVE
CVE
added 2024/08/12 8:55 p.m.107 views

CVE-2024-43360

ZoneMinder is affected by a time-based SQL Injection (CWE-89) vulnerability. The issue affects ZoneMinder installations and is publicly documented in multiple sources, including a dedicated Nuclei template for CVE-2024-43360. The underlying problem is a time-based SQL injection that can be exploi...

9.8CVSS9.8AI score0.06222EPSS
In wildExploits1References5Affected Software1
CVE
CVE
added 2024/08/12 8:49 p.m.67 views

CVE-2024-43359

CVE-2024-43359 affects ZoneMinder. Multiple connected sources confirm a cross-site scripting vulnerability in the montagereview feature that is exploitable via the displayinterval, speed, and scale parameters. The issue is fixed in ZoneMinder releases 1.36.34 and 1.37.61. The available documents ...

6.1CVSS3.6AI score0.00375EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/08/12 8:49 p.m.24 views

CVE-2024-43359 XSS vulnerabilities in montagereview

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale parameters. This vulnerability is fixed in 1.36.34 and 1.37.61...

6AI score0.00375EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/08/12 8:49 p.m.46 views

CVE-2024-43359

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the montagereview via the displayinterval, speed, and scale parameters. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS4.9AI score0.00375EPSS
Exploits0
CVE
CVE
added 2024/08/12 8:46 p.m.68 views

CVE-2024-43358

Vulnerability summary (CVE-2024-43358). ZoneMinder (open-source CCTV software) contains a cross-site scripting (XSS) vulnerability in the filter view via the filter[Id] parameter. The issue is documented as fixed in versions 1.36.34 and 1.37.61. Connected sources corroborate the vulnerability and...

6.1CVSS5.9AI score0.00331EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/08/12 8:46 p.m.42 views

CVE-2024-43358

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the filter view via the filterId. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS4.9AI score0.00331EPSS
Exploits0
OSV
OSV
added 2024/08/12 8:46 p.m.22 views

CVE-2024-43358 XSS vulnerability in filter view

ZoneMinder is a free, open source closed-circuit television software application. ZoneMinder has a cross-site scripting vulnerability in the filter view via the filterId. This vulnerability is fixed in 1.36.34 and 1.37.61...

6.1CVSS5.9AI score0.00331EPSS
Exploits0References5
CVE
CVE
added 2024/08/12 7:39 p.m.77 views

CVE-2023-41884

CVE-2023-41884 affects ZoneMinder: watch.php processes multiple SQL query parameters without proper sanitization, creating a SQL Injection risk in the ZoneMinder 1.x series. The vulnerability is described in the public CVE entry and corroborated by multiple sources noting the issue originates fro...

7.1CVSS6.9AI score0.00503EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/08/12 7:39 p.m.19 views

CVE-2023-41884 ZoneMinder Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in watch.php

ZoneMinder is a free, open source Closed-circuit television software application. In WWW/AJAX/watch.php, Line: 51 takes a few parameter in sql query without sanitizing it which makes it vulnerable to sql injection. This vulnerability is fixed in 1.36.34...

7.1CVSS6.9AI score0.00503EPSS
Exploits1References5
Pen Test Partners Blog
Pen Test Partners Blog
added 2024/08/07 5:56 a.m.12 views

Key safe security, or the lack of it

A few years back we put a key safe into our office. Previously, we had used a very simple locked cabinet to ensure keys were returned, as before that, keys kept being accidentally taken home. There’s no data of significance kept at the office. Everything is hosted elsewhere, but we could do witho...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2024/07/25 11:25 a.m.11 views

At the Olympics, AI Is Watching You

A controversial new surveillance system in Paris foreshadows a future where there are too many CCTV cameras for humans to physically watch...

7.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/10/07 12:52 a.m.11 views

cctvfirst.co.uk Cross Site Scripting vulnerability OBB-3725734

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
NVD
NVD
added 2023/10/03 2:15 p.m.18 views

CVE-2023-0506

The web service of ByDemes Group Airspace CCTV Web Service in its 2.616.BY00.11 version, contains a privilege escalation vulnerability, detected in the Camera Control Panel, whose exploitation could allow a low-privileged attacker to gain administrator access...

8.8CVSS8.9AI score0.00515EPSS
Exploits0References2
Rows per page
Query Builder