Alexxit

Go2rtc

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-29193

Exploit
  • EPSS 0.13%
  • Published 04.04.2024 19:15:08
  • Last modified 02.09.2025 16:51:11

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to DOM-based cross-site scripting. The index page (`index.html`) shows the available streams by fetching the API in the client side. Then, it uses `Object.entries` to ...

8.8

CVE-2024-29192

Exploit
  • EPSS 0.1%
  • Published 04.04.2024 18:15:14
  • Last modified 02.09.2025 16:54:25

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to Cross-Site Request Forgery. The `/api/config` endpoint allows one to modify the existing configuration with user-supplied values. While the API is only allowing loc...

6.1

CVE-2024-29191

Exploit
  • EPSS 0.14%
  • Published 04.04.2024 15:15:39
  • Last modified 02.09.2025 15:24:33

gotortc is a camera streaming application. Versions 1.8.5 and prior are vulnerable to DOM-based cross-site scripting. The links page (`links.html`) appends the `src` GET parameter (`[0]`) in all of its links for 1-click previews. The context in which...