Back to search
CVE-2008-3882
Published: Sep 2, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary commands via (1) the executeFilter function in zm_html_view_events.php and (2) the run_state parameter to zm_html_view_state.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30843
vdb-entry
x_refsource_BID
zoneminder-htmlviewevents-command-execution(44728)
vdb-entry
x_refsource_XF
31636
third-party-advisory
x_refsource_SECUNIA
20080826 ZoneMinder Multiple Vulnerabilities
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now