8 matches found
zoneminder-rce-poc
just wait and see Proof of concept for an OS command injectio...
PT-2026-39876
Name of the Vulnerable Software and Affected Versions Mantis Bug Tracker MantisBT versions prior to 2.28.2 Description An authorization bypass exists in the private issue monitoring feature. A user with project-level access can send a crafted POST request to the 'bug monitor add.php' endpoint to...
Arbitrary Code Injection
Overview @oneuptime/common is a The OneUptime Common UI Library is a collection of shared components, utilities that are used across the OneUptime platform. It is designed to be easy to install and use, and to be extensible. This library is built with React and TypeScript. It includes c Affected...
Display adapter priority and monitor creation in Citrix sessions
This article includes information about the display adapter selection process, how virtual monitors are created, and manual configuration options for the same. Starting with XenDesktop 7.16 the Citrix Virtual Desktop Agent VDA for Windows 10 automatically selects the best display adapter to use f...
UBUNTU-CVE-2016-10203
Cross-site scripting XSS vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor...
DEBIAN-CVE-2016-10203
Cross-site scripting XSS vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor...
CVE-2016-10203
Cross-site scripting XSS vulnerability in Zoneminder 1.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the name when creating a new monitor...
New Relic: rpm.newrelic.com - monitor creation to other accounts
It is possible to create monitors for other users by changing the user id in the body of the post request when creating a new monitor. Even though my tests were unsuccessful in a XSS on the monitor information, it may be an attack vector to other vulnerabilities since the monitor information show...