Vulnerabilidades en ZoneMinder
18 resultadosCVE-2023-26035HIGHZoneMinder vulnerable to Missing AuthorizationEPSS 80.5%CVE-2024-51482CRITICALBoolean-based SQL Injection in ZoneMinder v1.37.* <= 1.37.64EPSS 36.9%CVE-2024-43360CRITICALZoneMinder Time-based SQL InjectionEPSS 6.2%CVE-2022-39290HIGHCSRF key bypass using HTTP methods in zoneminderEPSS 5.4%CVE-2022-39291MEDIUMDenial of service through logs in zoneminderEPSS 5.1%CVE-2022-39285HIGHStored Cross-Site Scripting Vulnerability In File Parameter in zoneminderEPSS 3.7%CVE-2023-26034CRITICALZoneMinder SQL InjectionEPSS 1.6%CVE-2023-26039HIGHZoneMinder vulnerable to OS Command injection in daemonControl() APIEPSS 1.3%CVE-2023-26036HIGHZoneMinder contains Local File Inclusion vulnerabilityEPSS 0.9%CVE-2022-39289CRITICALDatabase log access in ZoneMinderEPSS 0.8%CVE-2023-25825HIGHZoneMinder contains Cross-site Scripting via log viewingEPSS 0.7%CVE-2023-26032HIGHZoneMinder contains SQL injection via malicious Jason Web TokenEPSS 0.6%CVE-2023-26037HIGHZoneMinder contains SQL Injection via report_event_auditEPSS 0.6%CVE-2023-26038MEDIUMZoneMinder contains Local File Inclusion vulnerability via `web/ajax/modal.php`EPSS 0.5%CVE-2023-41884HIGHZoneMinder Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in watch.phpEPSS 0.5%CVE-2026-27470HIGHZoneMinder: Second-Order SQL Injection in `getNearEvents()` via Stored Event Name and Cause FieldsEPSS 0.5%CVE-2024-43359NONEXSS vulnerabilities in montagereviewEPSS 0.4%CVE-2024-43358MEDIUMXSS vulnerability in filter viewEPSS 0.3%