┌──(root㉿kali)-[~] └─# >.... ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ References: [1] Product website for C-MOR Video Surveillance https://www.c-mor.com/ [2] SySS Security Advisory SYSS-2024-023 https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-023.txt [3] SySS Responsible Disclosure Policy https://www.syss.de/en/responsible-disclosure-policy/ [4] sqlmap GitHub repository https://github.com/sqlmapproject/sqlmap ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Credits: This security vulnerability was found by Chris Beiter, Frederik Beimgraben, and Matthias Deeg. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Disclaimer: The information provided in this security advisory is provided "as is" and without warranty of any kind. Details of this security advisory may be updated in order to provide as accurate information as possible. The latest version of this security advisory is available on the SySS Web site. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Copyright: Creative Commons - Attribution (by) - Version 3.0 URL: http://creativecommons.org/licenses/by/3.0/deed.en Advisory: command not found Product:: command not found Manufacturer:: command not found Affected: command not found Tested: command not found zsh: unknown file attribute: C Risk: command not found Solution: command not found Manufacturer: command not found Solution: command not found Public: command not found CVE: command not found Authors: command not found Command 'and' not found, but can be installed with: apt install and Do you want to install it? (N/y)oui ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Overview:: command not found Command 'The' not found, did you mean: command 'he' from deb node-he Try: apt install <deb name> Command 'The' not found, did you mean: command 'he' from deb node-he Try: apt install <deb name> zsh: file name too long: With C-MOR video surveillance, it is possible to check your\nsurveillance over network and the Internet. You can access the live\nview as well as previous recordings from any PC or mobile device.\nC-MOR is managed and controlled over the C-MOR web interface.\nIP settings, camera recording setup, user rights and so on are set\nover the web without the installation of any software on the\nclient.[1] Command 'Due' not found, did you mean: command 'due' from deb due Try: apt install <deb name> functionalities: command not found injection: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Vulnerability: command not found By: command not found provided: command not found to: command not found These: command not found SQL: command not found In: command not found zsh: number expected zsh: number expected zsh: number expected ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Proof: command not found Using: command not found Command 'via' not found, did you mean: command 'pia' from deb pia command 'vina' from deb autodock-vina command 'ia' from deb internetarchive command 'dia' from deb dia command 'iva' from deb iva command 'vis' from deb vis command 'vit' from deb vit command 'vba' from deb visualboyadvance Try: apt install <deb name> Command 'output' not found, but can be installed with: apt install yagiuda Do you want to install it? (N/y)oui ...: command not found ___ __H__ ___ ___["]_____ ___ ___ {1.8.5#stable} |_ -| . [)] | .'| . | |___|_ [)]_|_|_|__,| _| |_|V... |_| https://sqlmap.org Usage: python3 sqlmap [options] sqlmap: error: missing a mandatory option (-d, -u, -l, -m, -r, -g, -c, --wizard, --shell, --update, --purge, --list-tampers or --dependencies). Use -h for basic and -hh for advanced help ----: command not found Parameter:: command not found Type:: command not found Title:: command not found zsh: number expected [1] 131973 AND: command not found Payload:: command not found [1] + exit 127 Payload: days=1100 Type:: command not found zsh: unknown file attribute: q [1] 131988 AND: command not found Payload:: command not found [1] + exit 127 Payload: days=1100 ----: command not found [17:16:12]: command not found [17:16:12]: command not found [17:16:12]: command not found Command 'web' not found, did you mean: command 'wmb' from deb wml command 'wev' from deb wev command 'we' from deb xwpe command 'wob' from deb wob Try: apt install <deb name> back-end: command not found Command 'banner:' not found, did you mean: command 'banner' from deb sysvbanner Try: apt install <deb name> ...: command not found By: command not found could: command not found In: command not found However,: command not found parameter: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Solution:: command not found Command 'The' not found, did you mean: command 'he' from deb node-he Try: apt install <deb name> Command 'the' not found, did you mean: command 'tre' from deb tre-command command 'toe' from deb ncurses-bin command 'thd' from deb triggerhappy command 'he' from deb node-he command 'tde' from deb devtodo command 'thg' from deb tortoisehg command 'tee' from deb coreutils command 'tie' from deb texlive-binaries command 'hte' from deb ht Try: apt install <deb name> There: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Disclosure: command not found 2024-04-05:: command not found 2024-04-05:: command not found 2024-04-08:: command not found 2024-05-08:: command not found timeline: command not found public: command not found Command 'scheduled' not found, did you mean: command 'schedule' from deb trollsched-bin Try: apt install <deb name> 2024-05-10:: command not found Video: command not found response: command not found Command 'release' not found, did you mean: command 'lrelease' from deb qtchooser Try: apt install <deb name> 2024-07-30:: command not found concerning: command not found 2024-07-31:: command not found 2024-09-04:: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found References:: command not found [1]: command not found zsh: no such file or directory: https://www.c-mor.com/ [2]: command not found zsh: no such file or directory: https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-023.txt [3]: command not found zsh: no such file or directory: https://www.syss.de/en/responsible-disclosure-policy/ [4]: command not found zsh: no such file or directory: https://github.com/sqlmapproject/sqlmap ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Credits:: command not found This: command not found Beimgraben,: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Disclaimer:: command not found Command 'The' not found, did you mean: command 'he' from deb node-he Try: apt install <deb name> Command 'and' not found, but can be installed with: apt install and Do you want to install it? (N/y)oui be: command not found Command 'latest' not found, did you mean: command 'lptest' from deb lpr command 'aatest' from deb libaa-bin command 'l2test' from deb bluez command 'atest' from deb direwolf Try: apt install <deb name> site.: command not found ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~: command not found Copyright:: command not found zsh: unknown file attribute: b URL::