Cookie Consent by Free Privacy Policy Generator Aktuallisiere deine Cookie Einstellungen ๐Ÿ“Œ CVE-2022-39289 | ZoneMinder API access control (GHSA-mpcx-3gvh-9488)
Team IT Security Nachrichtenportal Logo


๐Ÿ“š CVE-2022-39289 | ZoneMinder API access control (GHSA-mpcx-3gvh-9488)


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability has been found in ZoneMinder and classified as critical. This vulnerability affects unknown code of the component API. The manipulation leads to improper access controls. This vulnerability was named CVE-2022-39289. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ Low CVE-2019-13072: Zoneminder Zoneminder


๐Ÿ“ˆ 34.98 Punkte

๐Ÿ“Œ TIBCO FTP Community Edition up to 6.5.0 on Windows Server/C API/Golang API/Java API/.Net API access control


๐Ÿ“ˆ 32.21 Punkte

๐Ÿ“Œ CVE-2019-16919 | Harbor API Access Control API Request default permission (GHSA-x2r2-w9c7-h624)


๐Ÿ“ˆ 31.05 Punkte

๐Ÿ“Œ CVE-2023-26039 | ZoneMinder up to 1.36.32/1.37.32 HostController.php daemonControl os command injection (GHSA-44q8-h2pw-cc9g)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-26034 | ZoneMinder up to 1.36.32/1.37.32 /zm/index.php filter[Query][terms][0][attr] sql injection (GHSA-222j-wh8m-xjrx)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-26032 | ZoneMinder up to 1.36.32/1.37.32 Web Token Username sql injection (GHSA-6c72-q9mw-mwx9)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-26035 | ZoneMinder up to 1.36.32/1.37.32 Snapshot Action shell_exec authorization (GHSA-72rg-h4vf-29gr)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-26038 | ZoneMinder up to 1.36.32/1.37.32 web/ajax/modal.php untrusted search path (GHSA-wrx3-r8c4-r24w)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-26036 | ZoneMinder up to 1.36.32/1.37.32 /web/index.php view untrusted search path (GHSA-h5m9-6jjc-cgmw)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-25825 | ZoneMinder up to 1.36.32 Database Log referrer cross site scripting (GHSA-68vf-g4qm-jr6v)


๐Ÿ“ˆ 27.19 Punkte

๐Ÿ“Œ CVE-2023-28645 | Nextcloud Richdocuments up to 6.3.1/7.0.1 Internal API Endpoint access control (GHSA-95j6-p5cj-5hh5)


๐Ÿ“ˆ 25.38 Punkte

๐Ÿ“Œ CVE-2023-39345 | Strapi/plugin-users-permissions prior 4.13.1 User Registration API access control (GHSA-gc7p-j5xm-xxh2)


๐Ÿ“ˆ 25.38 Punkte

๐Ÿ“Œ CVE-2024-0212 | Cloudflare Plugin up to 4.12.2 on Wordpress API access control (GHSA-h2fj-7r3m-7gf2)


๐Ÿ“ˆ 25.38 Punkte

๐Ÿ“Œ CVE-2024-24830 | OpenObserve up to 0.7.x Role-Based Access Control /api/{org_id}/users improper authorization (GHSA-hfxx-g56f-8h5v)


๐Ÿ“ˆ 25.38 Punkte

๐Ÿ“Œ CVE-2024-29200 | Kimai up to 2.12.x API insufficient granularity of access control (GHSA-cj3c-5xpm-cx94)


๐Ÿ“ˆ 25.38 Punkte

๐Ÿ“Œ ZoneMinder up to 1.32.2 control.php groupSql sql injection


๐Ÿ“ˆ 22.05 Punkte

๐Ÿ“Œ CVE-2023-24812 | Misskey up to 13.3.2 Note Search API api/notes/search-by-tag sql injection (GHSA-cgwp-vmr4-wx4q)


๐Ÿ“ˆ 21.55 Punkte

๐Ÿ“Œ CVE-2024-0965 | pluginsandsnippets Simple Page Access Restriction Plugin up to 1.0.21 on WordPress REST API access control (ID 3030099)


๐Ÿ“ˆ 20.62 Punkte

๐Ÿ“Œ Cisco Cyber Vision Center Access Control access control [CVE-2020-3448]


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ Netflix Dispatch Access Control access control [CVE-2020-9300]


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ HP Access Control up to 7.1.0 access control [CVE-2020-29165]


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ Cisco IOS XR/NX-OS IPv6 Access Control List access control [CVE-2021-1389]


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ VMware NSX-T Role Based Access Control access control [CVE-2021-21981]


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2015-6347 | Cisco Secure Access Control Server 5.7(0.15) RBAC access control (cisco-sa-20151023-acs_rbac / XFDB-107512)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2015-6348 | Cisco Secure Access Control Server 5.7(0.15) RBAC access control (cisco-sa-20151023-acs_rbac1 / BID-77310)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2021-23177 | libarchive Access Control List access control (ID 1565)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2017-15052 | TeamPass up to 2.1.27.8 Access Control users.queries.php id access control (ID 865292)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2017-15055 | TeamPass up to 2.1.27.8 Access Control items.queries.php item_id access control (ID 865292)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2019-15998 | Cisco IOS XR Access Control List access control (cisco-sa-20191120-iosxr-ssh-by)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2019-18998 | ABB Asset Suite up to 9.3/9.4.2.5/9.5.3.1 Access Control access control


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2020-7278 | McAfee Endpoint Security up to 10.6.1/10.7.0 on Windows Access Control access control


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2017-15053 | TeamPass up to 2.1.27.8 Access Control roles.queries.php id access control (ID 865292)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2024-20325 | Cisco Unified Intelligence Center up to 12.6 Live Data Server access control (cisco-sa-cuic-access-control-jJsZQMjj)


๐Ÿ“ˆ 20.01 Punkte

๐Ÿ“Œ CVE-2023-22734 | Shopware up to 6.4.18.0 access control (GHSA-46h7-vj7x-fxg2)


๐Ÿ“ˆ 19.7 Punkte

๐Ÿ“Œ CVE-2023-22730 | Shopware up to 6.4.18.0 Cart Validator access control (GHSA-8r6h-m72v-38fg)


๐Ÿ“ˆ 19.7 Punkte











matomo