Aggregates CVE and security vulnerability intelligence across all webcamxp-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk path handling, vendor risk denial of service, and vendor risk cross-site scripting, with potential vendor impact file overwrite across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-5862 | Directory traversal vulnerability in webcamXP 5.3.2.375 and 5.3.2.410 build 2132 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the URI. | [email protected] | 5.0 | 12.55% | 2009-01-06 | 2026-04-23 |
| CVE-2005-1190 | WebcamXP PRO v2.16.468 and earlier allows remote attackers to cause a denial of service via a long chat name, which takes up too much display space and prevents the chat frame from being properly rendered. | [email protected] | 5.0 | 0.58% | 2005-05-02 | 2026-04-16 |
| CVE-2005-1189 | Cross-site scripting (XSS) vulnerability in WebcamXP PRO v2.16.468 and earlier allows remote attackers to inject arbitrary web script or HTML via the chat name, as demonstrated by using an IFRAME to redirect users to other sites. | [email protected] | 4.3 | 0.34% | 2005-05-02 | 2026-04-16 |