Get a Demo

Let's Patch It!

Book a short call with one our specialists, we'll walk you through how Endor Patches work, and ask you a few questions about your environment (like your primary programming languages and repository management). We'll also send you an email right after you fill out the form, feel free to reply with any questions you have in advance!

CVE

CVE-2026-27470

ZoneMinder: Second-Order SQL Injection in `getNearEvents()` via Stored Event Name and Cause Fields
Back to all
CVE

CVE-2026-27470

ZoneMinder: Second-Order SQL Injection in `getNearEvents()` via Stored Event Name and Cause Fields

ZoneMinder is a free, open source closed-circuit television software application. In versions 1.36.37 and below and 1.37.61 through 1.38.0, there is a second-order SQL Injection vulnerability in the web/ajax/status.php file within the getNearEvents() function. Event field values (specifically Name and Cause) are stored safely via parameterized queries but are later retrieved and concatenated directly into SQL WHERE clauses without escaping. An authenticated user with Events edit and view permissions can exploit this to execute arbitrary SQL queries.

Package Versions Affected

Package Version
patch Availability
No items found.

Automatically patch vulnerabilities without upgrading

Fix Without Upgrading
Detect compatible fix
Apply safe remediation
Fix with a single pull request

CVSS Version

Severity
Base Score
CVSS Version
Score Vector
C
H
U
8.8
-
3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
C
H
U
0
-
3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
C
H
U
-

Related Resources

No items found.

References

https://github.com/ZoneMinder/zoneminder/releases/tag/1.36.38, https://github.com/ZoneMinder/zoneminder/releases/tag/1.38.1, https://owasp.org/www-community/attacks/SQL_Injection, https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27470.json, https://github.com/ZoneMinder/zoneminder/security/advisories/GHSA-r6gm-478g-f2c4, https://nvd.nist.gov/vuln/detail/CVE-2026-27470

Severity

8.8

CVSS Score
0
10

Basic Information

Ecosystem
Base CVSS
8.8
EPSS Probability
0.00013%
EPSS Percentile
0.01925%
Introduced Version
0,599361dc8bdf35daf85fcf629025cda5e05e298a
Fix Available
2c273305aee7bae011bbd3d2d4cd962a69609e94,6913b0615a3f6627d669ff1034a74a10cad4ebbe

Fix Critical Vulnerabilities Instantly

Secure your app without upgrading.
Fix Without Upgrading