Pl4Tyz

**Name of the Vulnerable Software and Affected Versions** ZoneMinder versions prior to 1.36.34 **Description** The issue is related to a SQL injection vulnerability in the ZoneMinder application. Specifically, the `watch.php` file takes a few parameters in an SQL query without proper sanitization, making it vulnerable to SQL injection attacks. **Recommendations** For versions prior to 1.36.34, update to version 1.36.34 to resolve the issue. As a temporary workaround, consider restricting access to the `watch.php` file until the update is applied.