Lucene search
+L

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2022-39285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ZoneMinder is a free, open source Closed-circuit television software application The file parameter is vulnerable to a cross site scripting vulnerability XSS by...

7.6CVSS6.5AI score0.03795EPSS
Exploits4References3
Exploit DB
Exploit DB
added 2023/03/27 12:0 a.m.218 views

Zoneminder < v1.37.24 - Log Injection & Stored XSS & CSRF Bypass

Exploit Title: Zoneminder v1.36.26 - Log Injection - CSRF Bypass - Stored Cross-Site Scripting XSS Date: 10/01/2022 Exploit Author: Trenches of IT Vendor Homepage: https://github.com/ZoneMinder/zoneminder Version: v1.36.26 Tested on: Linux/Windows CVE: CVE-2022-39285, CVE-2022-39290, CVE-2022-392...

8CVSS6.2AI score0.05598EPSS
Exploits6
Packet Storm
Packet Storm
added 2023/03/27 12:0 a.m.268 views

Zoneminder Log Injection / XSS / Cross Site Request Forgery

Exploit Title: Zoneminder v1.36.26 - Log Injection - CSRF Bypass - Stored Cross-Site Scripting XSS Date: 10/01/2022 Exploit Author: Trenches of IT Vendor Homepage: https://github.com/ZoneMinder/zoneminder Version: v1.36.26 Tested on: Linux/Windows CVE: CVE-2022-39285, CVE-2022-39290, CVE-2022-392...

8CVSS5.7AI score0.05598EPSS
Exploits6
0day.today
0day.today
added 2023/03/27 12:0 a.m.279 views

Zoneminder < v1.37.24 - Log Injection & Stored XSS & CSRF Bypass Exploit

Exploit Title: Zoneminder v1.36.26 - Log Injection - CSRF Bypass - Stored Cross-Site Scripting XSS Exploit Author: Trenches of IT Vendor Homepage: https://github.com/ZoneMinder/zoneminder Version: v1.36.26 Tested on: Linux/Windows CVE: CVE-2022-39285, CVE-2022-39290, CVE-2022-39291 Writeup:...

8CVSS5.7AI score0.05598EPSS
Exploits6
OpenVAS
OpenVAS
added 2022/11/23 12:0 a.m.20 views

ZoneMinder < 1.36.27, 1.37.x < 1.37.24 Multiple Vulnerabilities

ZoneMinder is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:zoneminder:zoneminder"; if...

9.1CVSS6.7AI score0.05598EPSS
Exploits7References4
Circl
Circl
added 2022/10/08 12:17 a.m.16 views

CVE-2022-39285

creationtimestamp| type| source ---|---|--- 2022-10-08 00:17:32+00:00| seen| https://t.me/cibsecurity/51026 2023-03-27 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51071...

7.6CVSS6.6AI score0.03795EPSS
Exploits4References2
UbuntuCve
UbuntuCve
added 2022/10/07 9:15 p.m.31 views

CVE-2022-39285

ZoneMinder is a free, open source Closed-circuit television software application The file parameter is vulnerable to a cross site scripting vulnerability XSS by backing out of the current "tr" "td" brackets. This then allows a malicious user to provide code that will execute when a user views the...

7.6CVSS6.3AI score0.03795EPSS
Exploits4References2
Rows per page
Query Builder