Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?
C-MOR Video Surveillance Faces Major Security Flaw: High-Risk Path Traversal Vulnerability Exposed
C-MOR Video Surveillance users, beware! A relative path traversal vulnerability (CWE-23) in version 5.2401 allows authenticated users to download arbitrary files. Update to version 6.00PL1 to avoid playing peek-a-boo with your system files.
Hot Take:
Who needs a hacker thriller movie when you’ve got C-MOR? This surveillance system is so transparent, you might just see through to the other side—literally.
Key Points:
- C-MOR Video Surveillance had a high-risk relative path traversal vulnerability.
- The vulnerability allowed authenticated users to download arbitrary files from the system.
- Two scripts, “download-bkf.pml” and “show-movies.pml,” were identified as vulnerable.
- The issue was fixed in version 6.00PL1 of the software.
- The vulnerability was responsibly disclosed and patched over several months.
Already a member? Log in here