zoneminder vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the zoneminder package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L CVE-2023-31493	*
L SQL Injection	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L SQL Injection	*
L CVE-2020-25730	<1.34.21-1
L Cross-site Scripting (XSS)	<1.36.33+dfsg1-1
L OS Command Injection	<1.36.33+dfsg1-1
L SQL Injection	<1.36.33+dfsg1-1
L Untrusted Search Path	<1.36.33+dfsg1-1
L SQL Injection	<1.36.33+dfsg1-1
L Untrusted Search Path	<1.36.33+dfsg1-1
L SQL Injection	<1.36.33+dfsg1-1
L Missing Authorization	<1.36.33+dfsg1-1
L Cross-site Scripting (XSS)	*
L Session Fixation	*
L Missing Authorization	<1.36.31+dfsg1-1
L Cross-site Scripting (XSS)	<1.36.31+dfsg1-1
L Improper Authentication	<1.36.31+dfsg1-1
L Improper Input Validation	<1.36.31+dfsg1-1
L Cross-site Scripting (XSS)	*
L Directory Traversal	<1.36.13+dfsg1-1
L Cross-site Scripting (XSS)	<1.34.21-1
M Cross-site Scripting (XSS)	<1.34.6-1
L SQL Injection	<1.34.6-1
L Cross-site Scripting (XSS)	*
L OS Command Injection	*
L SQL Injection	*
L SQL Injection	<1.34.6-1
L SQL Injection	*
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Session Fixation	*
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Arbitrary Code Injection	*
L Time-of-check Time-of-use (TOCTOU)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Request Forgery (CSRF)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
L Cross-site Scripting (XSS)	<1.34.6-1
C Out-of-bounds Write	<1.32.3-2
M Cross-site Scripting (XSS)	<1.32.3-2
M Cross-site Scripting (XSS)	<1.32.3-2
M Cross-site Scripting (XSS)	<1.32.3-2
C Deserialization of Untrusted Data	<1.32.3-2
C Deserialization of Untrusted Data	<1.32.3-2
M Cross-site Scripting (XSS)	<1.30.4+dfsg-1
M Cross-site Scripting (XSS)	<1.30.4+dfsg-1
H Cross-site Request Forgery (CSRF)	<1.30.4+dfsg-1
H Session Fixation	<1.30.4+dfsg-1
M Cross-site Scripting (XSS)	<1.30.4+dfsg-1
C SQL Injection	<1.30.4+dfsg-1
M Cross-site Scripting (XSS)	<1.30.4+dfsg-1
H Cross-site Request Forgery (CSRF)	<1.30.4+dfsg-1
M Information Exposure	<1.30.4+dfsg-1
M Cross-site Scripting (XSS)	<1.30.4+dfsg-1
H Information Exposure	<1.30.4+dfsg-1
H CVE-2013-0232	<1.25.0-4
M Directory Traversal	<1.25.0-1
M Access Restriction Bypass	<1.22.3-5
L Access Restriction Bypass	<1.24.1-1
C Arbitrary Code Injection	<1.24.1-1
H SQL Injection	<1.24.1-1
L Cross-site Scripting (XSS)	<1.24.1-1
M Arbitrary Code Injection	<1.23.3-1
H CVE-2004-0227	<1.22.3-1

Vulnerability

Vulnerable Version

CVE-2023-31493