Full title: ZoneMinder Snapshots Command Injection Exploit 
Category: remote exploits
Platform: multiple
This Metasploit module exploits an unauthenticated command injection in zoneminder that can be exploited by appending a command to an action of the snapshot view. Versions prior to 1.36.33 and 1.37.33 are affected.

# 0day.today @ http://0day.today/