5 matches found
CVE-2023-49864
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary file read.This vulnerability is triggered by the downloadURLimage parameter...
CVE-2023-49864
creationtimestamp| type| source ---|---|--- 2024-01-10 17:22:33+00:00| seen| https://t.me/ctinow/165993...
CVE-2023-49864
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary file read.This vulnerability is triggered by the downloadURLimage parameter...
CVE-2023-49864
An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to arbitrary file read.This vulnerability is triggered by the downloadURLimage parameter...
CVE-2023-49864
WWBN AVideo (dev master commit 15fed957fb) has an information disclosure vulnerability in the image upload path objects/aVideoEncoderReceiveImage.json.php. The issue is triggered by the downloadURL_image parameter and can lead to arbitrary file reads by abusing how the code fetches remote content...