header-logo
Suggest Exploit
vendor:
webcamXP
by:
SecurityFocus
7.5
CVSS
HIGH
Information Disclosure and Denial of Service
20, 400
CWE
Product Name: webcamXP
Affected Version From: 3.72.440
Affected Version To: 4.05.280 beta
Patch Exists: YES
Related CWE: N/A
CPE: a:webcamxp:webcamxp
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

webcamXP Multiple Information Disclosure and Denial of Service Vulnerabilities

webcamXP is prone to multiple information-disclosure and denial-of-service vulnerabilities because it fails to check user-supplied input data. Attackers can exploit these issues to access potentially sensitive information or crash the application. Successful exploits could aid in further attacks or deny service to legitimate users.

Mitigation:

Input validation should be used to ensure that user-supplied data is properly sanitized.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/27875/info
 
webcamXP is prone to multiple information-disclosure and denial-of-service vulnerabilities because it fails to check user-supplied input data.
 
Attackers can exploit these issues to access potentially sensitive information or crash the application. Successful exploits could aid in further attacks or deny service to legitimate users.
 
These issues affect webcamXP 3.72.440 and 4.05.280 beta and prior versions.

http://www.example.com:8080/show_gallery_pic?id=999999

Navigation

Suggest Exploit

Services By CQR