Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webcam vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2023-1188
A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42. It has been classified as problematic. Affected is the function 0x222018 in the library ftwebcam.sys of the component IoControlCode Handler. The manipulation leads to denial of service. The attack needs to ...
Fabulatech Webcam For Remote Desktop 2.8.42
5.5
CVSSv3
CVE-2021-30861
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1. A malicious application may bypass Gatekeeper checks.
Apple Safari
Apple Macos
1 Article
5.4
CVSSv3
CVE-2023-0365
The React Webcam WordPress plugin up to and including 1.2.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-S...
React Webcam Project React Webcam
5.4
CVSSv3
CVE-2021-24512
The Video Posts Webcam Recorder WordPress plugin prior to 3.2.4 has an authenticated reflected cross site scripting (XSS) vulnerability in one of the administrative functions for handling deletion of videos.
Videowhisper Video Posts Webcam Recorder
5.3
CVSSv3
CVE-2020-10858
Zulip Desktop prior to 5.0.0 allows malicious users to perform recording via the webcam and microphone due to a missing permission request handler.
Zulip Zulip Desktop
NA
CVE-2024-4031
Unquoted Search Path or Element vulnerability in Logitech MEVO WEBCAM APP on Windows allows Local Execution of Code.
NA
CVE-2024-28237
OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.9.3 contain a vulnerability that allows malicious admins to configure or talk a victim with administrator rights into configuring a webcam snapshot URL which when ...
NA
CVE-2022-3475327
Schneider Electric SpaceLogic C-Bus Home Controller (5200WHC2) versions 1.31.460 and below suffer from an authenticated OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user via the name GET parameter in delsnap....
NA
CVE-2014-4568
Cross-site scripting (XSS) vulnerability in posts/videowhisper/r_logout.php in the Video Posts Webcam Recorder plugin 1.55.4 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Videowhisper Video Posts Webcam Recorder
NA
CVE-2014-2715
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote malicious users to inject arbitrary web script or HTML via the (1) module or (2) message parameter to index.php.
Videowhisper Videowhisper 7.x-1.0
Videowhisper Videowhisper 7.x-1.x
Videowhisper Videowhisper 7.x-1.3
Videowhisper Videowhisper 7.x-1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »