CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10204

SQL injection vulnerability in Zoneminder 1.30 and earlier allows remote attackers to execute arbitrary SQL commands via the limit parameter in a log query request to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2016-10204

Zoneminder » Zoneminder » Version: N/A

cpe:2.3:a:zoneminder:zoneminder:-
Zoneminder » Zoneminder » Version: 1.25

cpe:2.3:a:zoneminder:zoneminder:1.25
Zoneminder » Zoneminder » Version: 1.26

cpe:2.3:a:zoneminder:zoneminder:1.26
Zoneminder » Zoneminder » Version: 1.26.0

cpe:2.3:a:zoneminder:zoneminder:1.26.0
Zoneminder » Zoneminder » Version: 1.26.1

cpe:2.3:a:zoneminder:zoneminder:1.26.1
Zoneminder » Zoneminder » Version: 1.26.2

cpe:2.3:a:zoneminder:zoneminder:1.26.2
Zoneminder » Zoneminder » Version: 1.26.3

cpe:2.3:a:zoneminder:zoneminder:1.26.3
Zoneminder » Zoneminder » Version: 1.26.4

cpe:2.3:a:zoneminder:zoneminder:1.26.4
Zoneminder » Zoneminder » Version: 1.26.5

cpe:2.3:a:zoneminder:zoneminder:1.26.5
Zoneminder » Zoneminder » Version: 1.27.0

cpe:2.3:a:zoneminder:zoneminder:1.27.0
Zoneminder » Zoneminder » Version: 1.28.0

cpe:2.3:a:zoneminder:zoneminder:1.28.0
Zoneminder » Zoneminder » Version: 1.28.1

cpe:2.3:a:zoneminder:zoneminder:1.28.1
Zoneminder » Zoneminder » Version: 1.29.0

cpe:2.3:a:zoneminder:zoneminder:1.29.0
Zoneminder » Zoneminder » Version: 1.30.0

cpe:2.3:a:zoneminder:zoneminder:1.30.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10204

Products

Pricing

Contact Us