open-mjpg-streamer: open-mjpg-streamer

日期: 2025-08-01 | 影响软件: open-mjpg-streamer | POC: 已公开

漏洞描述

Open mjpg-streamer service sharing webcam/camera feed

PoC代码[已公开]

id: open-mjpg-streamer

info:
  name: open-mjpg-streamer
  author: gboddin
  severity: medium
  description: Open mjpg-streamer service sharing webcam/camera feed
  reference:
    - https://github.com/jacksonliam/mjpg-streamer
  metadata:
    max-request: 1
  tags: iot,webcam,discovery

http:
  - method: GET
    path:
      - "{{BaseURL}}/?action=stream"

    max-size: 2048

    matchers-condition: and
    matchers:
      - type: word
        words:
          - 'MJPG-Streamer/0.2'
        part: header

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100e02377eb9ab9cd9259d7a6f3b4d74554170ffb0a861067e79a519d2bfb832cd9022100a17718fc6e11d34f3efd1c48dd00e18f5e314650aba4793d0b587d2b8bc29d3d:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/iot/open-mjpg-streamer.yaml