{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/95253?format=json","vulnerability_id":"VCID-9kh5-715y-pud4","summary":"ZoneMinder is a free, open source Closed-circuit television software application. In affected versions authenticated users can bypass CSRF keys by modifying the request supplied to the Zoneminder web application. These modifications include replacing HTTP POST with an HTTP GET and removing the CSRF key from the request. An attacker can take advantage of this by using an HTTP GET request to perform actions with no CSRF protection. This could allow an attacker to cause an authenticated user to perform unexpected actions on the web application. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue.","aliases":[{"alias":"CVE-2022-39290"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/488946?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423786?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488941?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488942?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488947?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405827?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=loongarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405831?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409798?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416447?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=loongarch64&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469749?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=loongarch64&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=loongarch64&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501793?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945128?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=loongarch64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=loongarch64&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945131?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945130?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=riscv64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=riscv64&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469748?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501796?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405824?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405825?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405826?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405829?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=riscv64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=riscv64&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405830?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405832?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409795?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409796?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409797?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409799?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409800?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/409801?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.19&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.19&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416444?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416445?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416446?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416448?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416449?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=riscv64&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=riscv64&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416450?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416452?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423781?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423782?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423783?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423784?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423785?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=riscv64&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=riscv64&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423788?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469746?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469747?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469750?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469751?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=riscv64&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=riscv64&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469752?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469753?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/469754?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=v3.22&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=v3.22&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488943?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488944?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/488945?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.17&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.17&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501790?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501791?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501792?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501794?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=s390x&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=s390x&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945125?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=aarch64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=aarch64&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945126?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armhf&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armhf&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945127?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=armv7&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=armv7&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945129?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945132?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/945133?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86_64&distroversion=edge&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86_64&distroversion=edge&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/405828?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=ppc64le&distroversion=v3.23&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/416451?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.21&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.21&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/501795?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.18&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.18&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/423787?format=json","purl":"pkg:apk/alpine/zoneminder@1.36.31-r0?arch=x86&distroversion=v3.20&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/zoneminder@1.36.31-r0%3Farch=x86&distroversion=v3.20&reponame=community"},{"url":"http://public2.vulnerablecode.io/api/packages/944012?format=json","purl":"pkg:deb/debian/zoneminder@1.36.31%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.36.31%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/994887?format=json","purl":"pkg:deb/debian/zoneminder@1.36.33%2Bdfsg1-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3xuk-942c-kkbf"},{"vulnerability":"VCID-4mfm-zzrx-6ffb"},{"vulnerability":"VCID-7x51-uyq2-9qax"},{"vulnerability":"VCID-mdkd-vmcp-afa8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.36.33%252Bdfsg1-1"},{"url":"http://public2.vulnerablecode.io/api/packages/943996?format=json","purl":"pkg:deb/debian/zoneminder@1.36.33%2Bdfsg1-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3xuk-942c-kkbf"},{"vulnerability":"VCID-4mfm-zzrx-6ffb"},{"vulnerability":"VCID-7x51-uyq2-9qax"},{"vulnerability":"VCID-mdkd-vmcp-afa8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.36.33%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/944000?format=json","purl":"pkg:deb/debian/zoneminder@1.36.35%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.36.35%252Bdfsg1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/943999?format=json","purl":"pkg:deb/debian/zoneminder@1.36.37%2Bdfsg1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.36.37%252Bdfsg1-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/943998?format=json","purl":"pkg:deb/debian/zoneminder@1.34.23-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3xuk-942c-kkbf"},{"vulnerability":"VCID-4mfm-zzrx-6ffb"},{"vulnerability":"VCID-4qtk-7myx-vfcd"},{"vulnerability":"VCID-7vc9-wfjb-t3ba"},{"vulnerability":"VCID-7x51-uyq2-9qax"},{"vulnerability":"VCID-95ub-6q5w-p3cm"},{"vulnerability":"VCID-9kh5-715y-pud4"},{"vulnerability":"VCID-d117-rhnc-rkhf"},{"vulnerability":"VCID-fyy1-fwys-xkbj"},{"vulnerability":"VCID-j283-1m9p-13hn"},{"vulnerability":"VCID-jukn-h868-5ugm"},{"vulnerability":"VCID-kk5d-y2z8-r3g2"},{"vulnerability":"VCID-mdkd-vmcp-afa8"},{"vulnerability":"VCID-mk5h-586t-pyga"},{"vulnerability":"VCID-n8y3-5fb9-kucb"},{"vulnerability":"VCID-tyu6-8h17-8yh5"},{"vulnerability":"VCID-uybk-r4q9-gyac"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.34.23-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/994886?format=json","purl":"pkg:deb/debian/zoneminder@1.34.23-1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3xuk-942c-kkbf"},{"vulnerability":"VCID-4mfm-zzrx-6ffb"},{"vulnerability":"VCID-4qtk-7myx-vfcd"},{"vulnerability":"VCID-7vc9-wfjb-t3ba"},{"vulnerability":"VCID-7x51-uyq2-9qax"},{"vulnerability":"VCID-95ub-6q5w-p3cm"},{"vulnerability":"VCID-9kh5-715y-pud4"},{"vulnerability":"VCID-d117-rhnc-rkhf"},{"vulnerability":"VCID-fyy1-fwys-xkbj"},{"vulnerability":"VCID-j283-1m9p-13hn"},{"vulnerability":"VCID-jukn-h868-5ugm"},{"vulnerability":"VCID-kk5d-y2z8-r3g2"},{"vulnerability":"VCID-mdkd-vmcp-afa8"},{"vulnerability":"VCID-mk5h-586t-pyga"},{"vulnerability":"VCID-n8y3-5fb9-kucb"},{"vulnerability":"VCID-tyu6-8h17-8yh5"},{"vulnerability":"VCID-uybk-r4q9-gyac"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/zoneminder@1.34.23-1"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39290","reference_id":"","reference_type":"","scores":[{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88554","published_at":"2026-05-15T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88504","published_at":"2026-05-11T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88517","published_at":"2026-05-12T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88545","published_at":"2026-05-14T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88392","published_at":"2026-04-02T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88401","published_at":"2026-04-04T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88405","published_at":"2026-04-07T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88425","published_at":"2026-04-08T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88431","published_at":"2026-04-09T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88442","published_at":"2026-04-21T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88434","published_at":"2026-04-12T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88433","published_at":"2026-04-13T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88448","published_at":"2026-04-16T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88445","published_at":"2026-04-18T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88459","published_at":"2026-04-24T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88464","published_at":"2026-04-29T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88476","published_at":"2026-05-05T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88492","published_at":"2026-05-07T12:55:00Z"},{"value":"0.04003","scoring_system":"epss","scoring_elements":"0.88506","published_at":"2026-05-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-39290"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39290","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-39290"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021565","reference_id":"1021565","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021565"},{"reference_url":"https://github.com/ZoneMinder/zoneminder/commit/c0a4c05e84eea0f6ccf7169c014efe5422c9ba0d","reference_id":"c0a4c05e84eea0f6ccf7169c014efe5422c9ba0d","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-22T15:40:55Z/"}],"url":"https://github.com/ZoneMinder/zoneminder/commit/c0a4c05e84eea0f6ccf7169c014efe5422c9ba0d"},{"reference_url":"https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-xgv6-qv6c-399q","reference_id":"GHSA-xgv6-qv6c-399q","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-22T15:40:55Z/"}],"url":"https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-xgv6-qv6c-399q"},{"reference_url":"http://packetstormsecurity.com/files/171498/Zoneminder-Log-Injection-XSS-Cross-Site-Request-Forgery.html","reference_id":"Zoneminder-Log-Injection-XSS-Cross-Site-Request-Forgery.html","reference_type":"","scores":[{"value":"8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-04-22T15:40:55Z/"}],"url":"http://packetstormsecurity.com/files/171498/Zoneminder-Log-Injection-XSS-Cross-Site-Request-Forgery.html"}],"weaknesses":[{"cwe_id":287,"name":"Improper Authentication","description":"When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct."}],"exploits":[{"date_added":"2023-03-27","description":"Zoneminder < v1.37.24 - Log Injection & Stored XSS & CSRF Bypass","required_action":null,"due_date":null,"notes":null,"known_ransomware_campaign_use":true,"source_date_published":"2023-03-27","exploit_type":"webapps","platform":"php","source_date_updated":"2023-06-19","data_source":"Exploit-DB","source_url":""}],"severity_range_score":"8.0 - 8.0","exploitability":"2.0","weighted_severity":"7.2","risk_score":10.0,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9kh5-715y-pud4"}