Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2024-27488
- EPSS 0.44%
- Published 08.04.2024 06:15:07
- Last modified 21.11.2024 09:04:40
Incorrect Access Control vulnerability in ZLMediaKit versions 1.0 through 8.0, allows remote attackers to escalate privileges and obtain sensitive information. The application system enables the http API interface by default and uses the secret param...
6.1
CVE-2023-39067
- EPSS 0.13%
- Published 11.09.2023 18:15:10
- Last modified 21.11.2024 08:14:42
Cross Site Scripting vulnerability in ZLMediaKiet v.4.0 and v.5.0 allows an attacker to execute arbitrary code via a crafted script to the URL.
7.5
CVE-2023-31861
- EPSS 0.28%
- Published 25.05.2023 02:15:08
- Last modified 16.01.2025 15:15:10
ZLMediaKit 4.0 is vulnerable to Directory Traversal.
7.5
CVE-2022-37237
- EPSS 0.27%
- Published 30.08.2022 16:15:08
- Last modified 21.11.2024 07:14:38
An attacker can send malicious RTMP requests to make the ZLMediaKit server crash remotely. Affected version is below commit 7d8b212a3c3368bc2f6507cb74664fc419eb9327.
1