2 matches found
EUVD-2026-16715
AVideo: Missing Authorization in Playlist Schedule Creation Allows Cross-User Broadcast Hijacking...
Missing Authorization
Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Missing Authorization in the add.json.php process. An attacker can gain unauthorized control over another user's broadcast schedules and execute rebroadcasts as th...