CVE-2008-3880

EPSS 0.42%

Published: 9/2/2008Modified: 4/28/2026

Description

SQL injection vulnerability in zm_html_view_event.php in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary SQL commands via the filter array parameter.

Affected packages (1)

Debian/zoneminderfrom 0, < 1.24.1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-3880