Homepage

zoneminder vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the zoneminder package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • L
CVE-2023-31493

*
  • L
Cross-site Scripting (XSS)

*
  • L
Cross-site Scripting (XSS)

*
  • L
SQL Injection

*
  • L
SQL Injection

*
  • L
CVE-2020-25730

<1.34.21-1
  • L
Cross-site Scripting (XSS)

*
  • L
OS Command Injection

*
  • L
SQL Injection

*
  • L
Untrusted Search Path

*
  • L
SQL Injection

*
  • L
Untrusted Search Path

*
  • L
SQL Injection

*
  • L
Missing Authorization

*
  • L
Cross-site Scripting (XSS)

*
  • L
Session Fixation

*
  • L
Missing Authorization

*
  • L
Cross-site Scripting (XSS)

*
  • L
Improper Authentication

*
  • L
Improper Input Validation

*
  • L
Cross-site Scripting (XSS)

*
  • L
Directory Traversal

*
  • L
Cross-site Scripting (XSS)

<1.34.21-1
  • M
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

*
  • L
OS Command Injection

*
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
SQL Injection

*
  • L
SQL Injection

<1.34.6-1
  • L
SQL Injection

*
  • L
SQL Injection

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Time-of-check Time-of-use (TOCTOU)

<1.34.6-1
  • L
Arbitrary Code Injection

*
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Session Fixation

*
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Request Forgery (CSRF)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • L
Cross-site Scripting (XSS)

<1.34.6-1
  • C
Out-of-bounds Write

<1.32.3-2
  • M
Cross-site Scripting (XSS)

<1.32.3-2
  • M
Cross-site Scripting (XSS)

<1.32.3-2
  • M
Cross-site Scripting (XSS)

<1.32.3-2
  • C
Deserialization of Untrusted Data

<1.32.3-2
  • C
Deserialization of Untrusted Data

<1.32.3-2
  • M
Cross-site Scripting (XSS)

<1.30.4+dfsg-1
  • M
Cross-site Scripting (XSS)

<1.30.4+dfsg-1
  • M
Cross-site Scripting (XSS)

<1.30.4+dfsg-1
  • H
Session Fixation

<1.30.4+dfsg-1
  • H
Cross-site Request Forgery (CSRF)

<1.30.4+dfsg-1
  • C
SQL Injection

<1.30.4+dfsg-1
  • M
Cross-site Scripting (XSS)

<1.30.4+dfsg-1
  • H
Cross-site Request Forgery (CSRF)

<1.30.4+dfsg-1
  • M
Cross-site Scripting (XSS)

<1.30.4+dfsg-1
  • M
Information Exposure

<1.30.4+dfsg-1
  • H
Information Exposure

<1.30.4+dfsg-1
  • H
CVE-2013-0232

<1.25.0-4
  • M
Directory Traversal

<1.25.0-1
  • L
Access Restriction Bypass

<1.24.1-1
  • M
Access Restriction Bypass

<1.22.3-5
  • C
Arbitrary Code Injection

<1.24.1-1
  • L
Cross-site Scripting (XSS)

<1.24.1-1
  • H
SQL Injection

<1.24.1-1
  • M
Arbitrary Code Injection

<1.23.3-1
  • H
CVE-2004-0227

<1.22.3-1