Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-ntf9-j7zg-zqes

Summary MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin access to achieve code execution when Motion is restarted.

Aliases

alias	CVE-2025-60787

alias	GHSA-j945-qm58-4gjx

Fixed_packages

url	pkg:pypi/motioneye@0.43.1b5
purl	pkg:pypi/motioneye@0.43.1b5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b5

Affected_packages

url pkg:pypi/motioneye@0.27

purl pkg:pypi/motioneye@0.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.27

url pkg:pypi/motioneye@0.27.1

purl pkg:pypi/motioneye@0.27.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.27.1

url pkg:pypi/motioneye@0.27.2

purl pkg:pypi/motioneye@0.27.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.27.2

url pkg:pypi/motioneye@0.28

purl pkg:pypi/motioneye@0.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.28

url pkg:pypi/motioneye@0.28.1

purl pkg:pypi/motioneye@0.28.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.28.1

url pkg:pypi/motioneye@0.28.2

purl pkg:pypi/motioneye@0.28.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.28.2

url pkg:pypi/motioneye@0.28.3

purl pkg:pypi/motioneye@0.28.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.28.3

url pkg:pypi/motioneye@0.29rc1

purl pkg:pypi/motioneye@0.29rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.29rc1

url pkg:pypi/motioneye@0.29rc2

purl pkg:pypi/motioneye@0.29rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.29rc2

url pkg:pypi/motioneye@0.29

purl pkg:pypi/motioneye@0.29

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.29

url pkg:pypi/motioneye@0.29.1

purl pkg:pypi/motioneye@0.29.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.29.1

url pkg:pypi/motioneye@0.30rc1

purl pkg:pypi/motioneye@0.30rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.30rc1

url pkg:pypi/motioneye@0.30rc2

purl pkg:pypi/motioneye@0.30rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.30rc2

url pkg:pypi/motioneye@0.30

purl pkg:pypi/motioneye@0.30

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.30

url pkg:pypi/motioneye@0.31

purl pkg:pypi/motioneye@0.31

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31

url pkg:pypi/motioneye@0.31.1

purl pkg:pypi/motioneye@0.31.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31.1

url pkg:pypi/motioneye@0.31.2

purl pkg:pypi/motioneye@0.31.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31.2

url pkg:pypi/motioneye@0.31.3

purl pkg:pypi/motioneye@0.31.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31.3

url pkg:pypi/motioneye@0.31.4

purl pkg:pypi/motioneye@0.31.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31.4

url pkg:pypi/motioneye@0.31.5

purl pkg:pypi/motioneye@0.31.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.31.5

url pkg:pypi/motioneye@0.32

purl pkg:pypi/motioneye@0.32

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.32

url pkg:pypi/motioneye@0.32.1

purl pkg:pypi/motioneye@0.32.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.32.1

url pkg:pypi/motioneye@0.32.2

purl pkg:pypi/motioneye@0.32.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.32.2

url pkg:pypi/motioneye@0.33

purl pkg:pypi/motioneye@0.33

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33

url pkg:pypi/motioneye@0.33.1

purl pkg:pypi/motioneye@0.33.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33.1

url pkg:pypi/motioneye@0.33.2

purl pkg:pypi/motioneye@0.33.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33.2

url pkg:pypi/motioneye@0.33.3

purl pkg:pypi/motioneye@0.33.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33.3

url pkg:pypi/motioneye@0.33.4

purl pkg:pypi/motioneye@0.33.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.33.4

url pkg:pypi/motioneye@0.34rc1

purl pkg:pypi/motioneye@0.34rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.34rc1

url pkg:pypi/motioneye@0.34

purl pkg:pypi/motioneye@0.34

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.34

url pkg:pypi/motioneye@0.34.1

purl pkg:pypi/motioneye@0.34.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.34.1

url pkg:pypi/motioneye@0.35rc1

purl pkg:pypi/motioneye@0.35rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.35rc1

url pkg:pypi/motioneye@0.35

purl pkg:pypi/motioneye@0.35

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.35

url pkg:pypi/motioneye@0.35.1

purl pkg:pypi/motioneye@0.35.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.35.1

url pkg:pypi/motioneye@0.35.2

purl pkg:pypi/motioneye@0.35.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.35.2

url pkg:pypi/motioneye@0.36

purl pkg:pypi/motioneye@0.36

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.36

url pkg:pypi/motioneye@0.36.1

purl pkg:pypi/motioneye@0.36.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.36.1

url pkg:pypi/motioneye@0.37rc1

purl pkg:pypi/motioneye@0.37rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.37rc1

url pkg:pypi/motioneye@0.37

purl pkg:pypi/motioneye@0.37

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.37

url pkg:pypi/motioneye@0.37.1

purl pkg:pypi/motioneye@0.37.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.37.1

url pkg:pypi/motioneye@0.38

purl pkg:pypi/motioneye@0.38

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.38

url pkg:pypi/motioneye@0.38.1

purl pkg:pypi/motioneye@0.38.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.38.1

url pkg:pypi/motioneye@0.39

purl pkg:pypi/motioneye@0.39

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.39

url pkg:pypi/motioneye@0.39.1

purl pkg:pypi/motioneye@0.39.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.39.1

url pkg:pypi/motioneye@0.39.2

purl pkg:pypi/motioneye@0.39.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.39.2

url pkg:pypi/motioneye@0.39.3

purl pkg:pypi/motioneye@0.39.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.39.3

url pkg:pypi/motioneye@0.40rc1

purl pkg:pypi/motioneye@0.40rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40rc1

url pkg:pypi/motioneye@0.40rc2

purl pkg:pypi/motioneye@0.40rc2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40rc2

url pkg:pypi/motioneye@0.40rc3

purl pkg:pypi/motioneye@0.40rc3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40rc3

url pkg:pypi/motioneye@0.40rc4

purl pkg:pypi/motioneye@0.40rc4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40rc4

url pkg:pypi/motioneye@0.40rc5

purl pkg:pypi/motioneye@0.40rc5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40rc5

url pkg:pypi/motioneye@0.40

purl pkg:pypi/motioneye@0.40

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.40

url pkg:pypi/motioneye@0.41rc1

purl pkg:pypi/motioneye@0.41rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.41rc1

url pkg:pypi/motioneye@0.41

purl pkg:pypi/motioneye@0.41

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.41

url pkg:pypi/motioneye@0.42

purl pkg:pypi/motioneye@0.42

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.42

url pkg:pypi/motioneye@0.42.1

purl pkg:pypi/motioneye@0.42.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-6amw-xbhq

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-akjw-q2d4-d7ac

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.42.1

url pkg:pypi/motioneye@0.43.1b1

purl pkg:pypi/motioneye@0.43.1b1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2z93-3ahx-hfae

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b1

url pkg:pypi/motioneye@0.43.1b2

purl pkg:pypi/motioneye@0.43.1b2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2z93-3ahx-hfae

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b2

url pkg:pypi/motioneye@0.43.1b3

purl pkg:pypi/motioneye@0.43.1b3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2z93-3ahx-hfae

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b3

url pkg:pypi/motioneye@0.43.1b4

purl pkg:pypi/motioneye@0.43.1b4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-61vg-qm9f-gbhp

vulnerability	VCID-ntf9-j7zg-zqes

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/motioneye@0.43.1b4

References

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-60787

reference_id

reference_type

scores

value	0.57917
scoring_system	epss
scoring_elements	0.98224
published_at	2026-06-14T12:55:00Z

value	0.57917
scoring_system	epss
scoring_elements	0.98217
published_at	2026-06-11T12:55:00Z

value	0.57917
scoring_system	epss
scoring_elements	0.98223
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-60787

reference_url

https://github.com/motioneye-project/motioneye

reference_id

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/motioneye-project/motioneye

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52481.txt
reference_id	CVE-2025-60787
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52481.txt

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-60787

reference_id

CVE-2025-60787

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-60787

reference_url

https://github.com/advisories/GHSA-j945-qm58-4gjx

reference_id

GHSA-j945-qm58-4gjx

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-j945-qm58-4gjx

reference_url

https://github.com/motioneye-project/motioneye/security/advisories/GHSA-j945-qm58-4gjx

reference_id

GHSA-j945-qm58-4gjx

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/motioneye-project/motioneye/security/advisories/GHSA-j945-qm58-4gjx

reference_url

http://motioneye-project.com

reference_id

motioneye-project.com

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-10-03T14:57:27Z/

url

http://motioneye-project.com

reference_url

https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter

reference_id

motionEye-RCE-through-config-parameter

reference_type

scores

value	7.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-10-03T14:57:27Z/

url

https://github.com/prabhatverma47/motionEye-RCE-through-config-parameter

Weaknesses

cwe_id	78
name	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description	The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

cwe_id	116
name	Improper Encoding or Escaping of Output
description	The product prepares a structured message for communication with another component, but encoding or escaping of the data is either missing or done incorrectly. As a result, the intended structure of the message is not preserved.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

date_added	2026-02-11
description	motionEye 0.43.1b4 - RCE
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`false`
source_date_published	2026-02-11
exploit_type	webapps
platform	multiple
source_date_updated	2026-02-11
data_source	Exploit-DB
source_url

date_added	`null`
description	This module exploits a template injection vulnerability in the MotionEye Frontend. MotionEye Frontend versions 0.43.1b4 and prior are vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to MotionEye Frontend configuration files, allowing remote authenticated attackers with admin access to achieve code execution. Successful exploitation will result in the command executing as the user running the web server, potentially exposing sensitive data or disrupting survey operations. An attacker can execute arbitrary system commands in the context of the user running the web server.
required_action	`null`
due_date	`null`
notes	Stability: - crash-safe SideEffects: - ioc-in-logs - artifacts-on-disk Reliability: - repeatable-session
known_ransomware_campaign_use	`false`
source_date_published	2025-09-09
exploit_type	`null`
platform	Linux,Unix
source_date_updated	`null`
data_source	Metasploit
source_url	https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/linux/http/motioneye_auth_rce_cve_2025_60787.rb

Severity_range_score 7.0 - 8.9

Exploitability 2.0

Weighted_severity 8.0

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ntf9-j7zg-zqes

Vulnerability Instance