Prabhat Verma

1 exploit Active since Oct 2025
CVE-2025-60787 NOMISEC HIGH WORKING POC
MotionEye <= 0.43.1b4 - Authenticated Configuration Command Injection
MotionEye v0.43.1b4 and before is vulnerable to OS Command Injection in configuration parameters such as image_file_name. Unsanitized user input is written to Motion configuration files, allowing remote authenticated attackers with admin access to achieve code execution when Motion is restarted.
CVSS 7.2