Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:pypi/motioneye@0.33.3
Typepypi
Namespace
Namemotioneye
Version0.33.3
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version0.43.1b5
Latest_non_vulnerable_version0.43.1b5
Affected_by_vulnerabilities
0
url VCID-19se-6amw-xbhq
vulnerability_id VCID-19se-6amw-xbhq
summary MotionEye allows attackers to access sensitive information
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-25568
reference_id
reference_type
scores
0
value 0.8531
scoring_system epss
scoring_elements 0.99384
published_at 2026-06-12T12:55:00Z
1
value 0.8531
scoring_system epss
scoring_elements 0.99381
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-25568
1
reference_url https://github.com/ccrisan/motioneye/issues/2292
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ccrisan/motioneye/issues/2292
2
reference_url https://github.com/motioneye-project/motioneye
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/motioneye-project/motioneye
3
reference_url https://github.com/motioneye-project/motioneye/commit/c60b64af5bb8c09189071522a1f6796cb44340b0
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/motioneye-project/motioneye/commit/c60b64af5bb8c09189071522a1f6796cb44340b0
4
reference_url https://github.com/pypa/advisory-database/tree/main/vulns/motioneye/PYSEC-2022-43141.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/pypa/advisory-database/tree/main/vulns/motioneye/PYSEC-2022-43141.yaml
5
reference_url https://www.pizzapower.me/2022/02/17/motioneye-config-info-disclosure
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.pizzapower.me/2022/02/17/motioneye-config-info-disclosure
6
reference_url https://www.pizzapower.me/2022/02/17/motioneye-config-info-disclosure/
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://www.pizzapower.me/2022/02/17/motioneye-config-info-disclosure/
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-25568
reference_id CVE-2022-25568
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2022-25568
8
reference_url https://github.com/advisories/GHSA-2c7w-v459-cwgf
reference_id GHSA-2c7w-v459-cwgf
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-2c7w-v459-cwgf
fixed_packages
0
url pkg:pypi/motioneye@0.43.1b1
purl pkg:pypi/motioneye@0.43.1b1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2z93-3ahx-hfae
1
vulnerability VCID-61vg-qm9f-gbhp
2
vulnerability VCID-ntf9-j7zg-zqes
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b1
aliases CVE-2022-25568, GHSA-2c7w-v459-cwgf, PYSEC-2022-43141
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-19se-6amw-xbhq
1
url VCID-61vg-qm9f-gbhp
vulnerability_id VCID-61vg-qm9f-gbhp
summary Duplicate Advisory: motionEye vulnerable to RCE via unsanitized motion config parameter
references
0
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-60787
reference_id CVE-2025-60787
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-60787
1
reference_url https://github.com/advisories/GHSA-26f6-wm47-7h7j
reference_id GHSA-26f6-wm47-7h7j
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-26f6-wm47-7h7j
fixed_packages
aliases GHSA-26f6-wm47-7h7j
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-61vg-qm9f-gbhp
2
url VCID-akjw-q2d4-d7ac
vulnerability_id VCID-akjw-q2d4-d7ac
summary Unrestricted Upload of File with Dangerous Type in motionEye
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-44255
reference_id
reference_type
scores
0
value 0.13636
scoring_system epss
scoring_elements 0.94431
published_at 2026-06-12T12:55:00Z
1
value 0.13636
scoring_system epss
scoring_elements 0.94411
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-44255
1
reference_url https://github.com/ccrisan/motioneye
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ccrisan/motioneye
2
reference_url https://github.com/ccrisan/motioneyeos/issues/2843
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/ccrisan/motioneyeos/issues/2843
3
reference_url https://www.pizzapower.me/2021/10/09/self-hosted-security-part-1-motioneye
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.pizzapower.me/2021/10/09/self-hosted-security-part-1-motioneye
4
reference_url https://www.pizzapower.me/2021/10/09/self-hosted-security-part-1-motioneye/
reference_id
reference_type
scores
url https://www.pizzapower.me/2021/10/09/self-hosted-security-part-1-motioneye/
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-44255
reference_id CVE-2021-44255
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-44255
6
reference_url https://github.com/advisories/GHSA-m2c7-42rf-c62f
reference_id GHSA-m2c7-42rf-c62f
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-m2c7-42rf-c62f
fixed_packages
0
url pkg:pypi/motioneye@0.42.1
purl pkg:pypi/motioneye@0.42.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-19se-6amw-xbhq
1
vulnerability VCID-61vg-qm9f-gbhp
2
vulnerability VCID-akjw-q2d4-d7ac
3
vulnerability VCID-ntf9-j7zg-zqes
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.42.1
aliases CVE-2021-44255, GHSA-m2c7-42rf-c62f
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-akjw-q2d4-d7ac
3
url VCID-ntf9-j7zg-zqes
vulnerability_id VCID-ntf9-j7zg-zqes
summary MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin access to achieve code execution when Motion is restarted.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-60787
reference_id
reference_type
scores
0
value 0.57917
scoring_system epss
scoring_elements 0.98223
published_at 2026-06-12T12:55:00Z
1
value 0.57917
scoring_system epss
scoring_elements 0.98217
published_at 2026-06-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-60787
1
reference_url https://github.com/motioneye-project/motioneye
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/motioneye-project/motioneye
2
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52481.txt
reference_id CVE-2025-60787
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52481.txt
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2025-60787
reference_id CVE-2025-60787
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2025-60787
4
reference_url https://github.com/advisories/GHSA-j945-qm58-4gjx
reference_id GHSA-j945-qm58-4gjx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-j945-qm58-4gjx
5
reference_url https://github.com/motioneye-project/motioneye/security/advisories/GHSA-j945-qm58-4gjx
reference_id GHSA-j945-qm58-4gjx
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/motioneye-project/motioneye/security/advisories/GHSA-j945-qm58-4gjx
6
reference_url http://motioneye-project.com
reference_id motioneye-project.com
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-10-03T14:57:27Z/
url http://motioneye-project.com
7
reference_url https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter
reference_id motionEye-RCE-through-config-parameter
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
2
value Track*
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-10-03T14:57:27Z/
url https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter
fixed_packages
0
url pkg:pypi/motioneye@0.43.1b5
purl pkg:pypi/motioneye@0.43.1b5
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b5
aliases CVE-2025-60787, GHSA-j945-qm58-4gjx
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ntf9-j7zg-zqes
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33.3