CVEs-PoC/2013/CVE-2013-0232.md at eb8fb22b51df9332dc1ec68d0bcaedfdbefed8cd

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-12 01:26:10 +00:00

Files

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

includes/functions.php in ZoneMinder Video Server 1.24.0, 1.25.0, and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) runState parameter in the packageControl function; or (2) key or (3) command parameter in the setDeviceStatusX10 function.

POC

Reference

http://itsecuritysolutions.org/2013-01-22-ZoneMinder-Video-Server-arbitrary-command-execution-vulnerability/

Github

No PoCs found on GitHub currently.

834 B Raw Blame History

CVE-2013-0232

Description

POC

Reference

Github

834 B

Raw Blame History