This page aggregates publicly disclosed CVE and security risk information related to trackercam, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2005-0482 | TrackerCam 5.12 and earlier allows remote attackers to cause a denial of service (crash) via (1) a large number of connections with a negative Content-Length header, possibly triggering an integer signedness error, or (2) a large amount of data. | [email protected] | 5.0 | 0.89% | 2005-03-30 | 2026-04-16 |
| CVE-2005-0481 | TrackerCam 5.12 and earlier allows remote attackers to read log files via the fn parameter in a direct request to the ComGetLogFile.php3 script. | [email protected] | 5.0 | 0.50% | 2005-03-30 | 2026-04-16 |
| CVE-2005-0480 | Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and earlier allows remote attackers to inject arbitrary HTML or web script via the login request, which is recorded in a log file but not properly handled when the administrator views the log file. | [email protected] | 4.3 | 0.40% | 2005-03-30 | 2026-04-16 |
| CVE-2005-0479 | Directory traversal vulnerability in ComGetLogFile.php3 for TrackerCam 5.12 and earlier allows remote attackers to read arbitrary files via ".." sequences and (1) "/" slash), (2) "\" (backslash), or (3) hex-encoded characters in the fn parameter. | [email protected] | 5.0 | 3.45% | 2005-03-30 | 2026-04-16 |
| CVE-2005-0478 | Multiple buffer overflows in TrackerCam 5.12 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP request with a long User-Agent header or (2) a long argument to an arbitrary PHP script. | [email protected] | 5.0 | 65.48% | 2005-03-30 | 2026-04-16 |