Lucene search
K

422 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/21 10:12 p.m.4 views

CVE-2026-40926

WWBN AVideo is an open source video platform. In versions 29.0 and prior, three admin-only JSON endpoints — objects/categoryAddNew.json.php, objects/categoryDelete.json.php, and objects/pluginRunUpdateScript.json.php — enforce only a role check Category::canCreateCategory / User::isAdmin and...

7.1CVSS5.9AI score0.00166EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2026/04/21 8:17 p.m.6 views

CVE-2026-40909

WWBN AVideo is an open source video platform. In versions 29.0 and prior, the locale save endpoint locale/save.php constructs a file path by directly concatenating $POST'flag' into the path at line 30 without any sanitization. The $POST'code' parameter is then written verbatim to that path via...

8.7CVSS0.00656EPSS
Exploits1References2
CVE
CVE
added 2026/04/21 7:55 p.m.16 views

CVE-2026-40911

CVE-2026-40911 affects WWBN AVideo before version 30.x via the YPTSocket WebSocket plugin. The WebSocket server relays attacker-supplied JSON fields without sanitization, and plugin/YPTSocket/script.js directly feeds relayed json.msg.autoEvalCodeOnHTML and json.callback into eval(), enabling unau...

10CVSS5.9AI score0.00645EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/21 7:52 p.m.2 views

CVE-2026-40908 WWBN AVideo has an Unauthenticated Information Disclosure via git.json.php that Exposes Developer Emails and Deployed Version

WWBN AVideo is an open source video platform. In versions 29.0 and prior, the file git.json.php at the web root executes git log -1 and returns the full output as JSON to any unauthenticated user. This exposes the exact deployed commit hash enabling version fingerprinting against known CVEs,...

5.3CVSS5.7AI score0.0025EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.11 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 29.0 contained security vulnerabilities. These vulnerabilities stemmed from incomplete XSS repairs in the ParsedownSafeWithLinks class, as well as the lack of coverage for...

5.4CVSS5.8AI score0.00216EPSS
Exploits2References1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.10 views

WWBN AVideo 访问控制错误漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 29.0 contained an access control vulnerability. This vulnerability stemmed from incomplete CORS origin validation repairs, as two code paths still reflected arbitrary Origin...

7.1CVSS6AI score0.00132EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.10 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 29.0 contained security vulnerabilities. These vulnerabilities stemmed from the objects/getCaptcha.php file, which directly accepts the CAPTCHA length from the query string...

5.3CVSS5.8AI score0.00218EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.5 views

PT-2026-34206

Name of the Vulnerable Software and Affected Versions WWBN AVideo versions prior to 29.1 Description An issue exists where the isValidDuration function at 'objects/video.php:918' uses a regular expression /^0-91,2:0-91,2:0-91,2/ that lacks a $ end anchor. This allows arbitrary HTML or JavaScript ...

5.4CVSS5.7AI score0.00173EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.10 views

PT-2026-34216

Name of the Vulnerable Software and Affected Versions AVideo versions prior to 29.1 Description An incomplete fix in the 'test.php' file allows for unsanitized input. While the wget path was secured using escapeshellarg, the file get contents and curl code paths remain unsanitized. Additionally,...

9.3CVSS5.3AI score0.00335EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.5 views

PT-2026-34204

Name of the Vulnerable Software and Affected Versions WWBN AVideo versions 29.0 and earlier Description An incomplete fix in the CloneSite feature allows for the deletion of arbitrary files. The deleteDump parameter in a GET request does not properly filter path traversal sequences, such as ../.....

8.1CVSS5.9AI score0.00469EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.6 views

PT-2026-34178

WWBN AVideo is an open source video platform. In versions 29.0 and prior, objects/configurationUpdate.json.php also routed via /updateConfig persists dozens of global site settings from $ POST but protects the endpoint only with User::isAdmin. It does not call forbidIfIsUntrustedRequest, does not...

8.3CVSS5.8AI score0.00173EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.10 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 29.0 contained security vulnerabilities. These vulnerabilities stemmed from the allowOrigin function in objects/functions.php, which allowed arbitrary Origin headers to be...

8.1CVSS5.9AI score0.00335EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.12 views

WWBN AVideo 路径遍历漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 29.0 contained a path traversal vulnerability. This vulnerability stemmed from the directory traversal fix in objects/aVideoEncoderReceiveImage.json.php, which only checked the U...

6.5CVSS5.8AI score0.00718EPSS
Exploits1References1
Snyk
Snyk
added 2026/04/14 11:13 p.m.7 views

Cross-site Request Forgery (CSRF)

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF through the commentDelete.json.php endpoint, which lacks proper validation of request origin and does not require a CSRF token. An...

5.4CVSS5.7AI score
Exploits0References2
Snyk
Snyk
added 2026/04/14 10:50 p.m.3 views

Arbitrary Code Injection

Overview wwbn/avideo is an Audio and Video Platform or simply "A Video Platform". Affected versions of this package are vulnerable to Arbitrary Code Injection via the msg and callback fields in relayed WebSocket messages, which are processed by client-side eval sinks. An attacker can execute...

10CVSS6.1AI score0.00645EPSS
Exploits1References2
Circl
Circl
added 2026/04/13 1:40 p.m.9 views

CVE-2026-40928

creationtimestamp| type| source ---|---|--- 2026-04-13 13:40:24+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-x2pw-9c38-cp2j...

5.4CVSS5.8AI score0.00115EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/08 12:8 a.m.3 views

EUVD-2026-19879

WWBN AVideo has Stored XSS via Malicious EPG XML Program Titles in AVideo EPG Page...

5.4CVSS5.9AI score0.00195EPSS
Exploits0References3
GitLab Advisory Database
GitLab Advisory Database
added 2026/04/08 12:0 a.m.17 views

WWBN AVideo has an Allowlisted downloadURL media extensions bypass SSRF protection and enable internal response exfiltration (Incomplete fix for CVE-2026-27732)

The fix for CVE-2026-27732 is incomplete. objects/aVideoEncoder.json.php still allows attacker-controlled downloadURL values with common media or archive extensions such as .mp4, .mp3, .zip, .jpg, .png, .gif, and .webm to bypass SSRF validation. The server then fetches the response and stores it ...

8.6CVSS5.9AI score0.00235EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.3 views

CVE-2026-35181

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the player skin configuration endpoint at admin/playerUpdate.json.php does not validate CSRF tokens. The plugins table is explicitly excluded from the ORM's domain-based security check via ignoreTableSecurityCheck, removing...

4.3CVSS5.9AI score0.00134EPSS
Exploits1References1
NVD
NVD
added 2026/04/07 8:16 p.m.5 views

CVE-2026-39370

WWBN AVideo is an open source video platform. In versions 26.0 and prior, objects/aVideoEncoder.json.php still allows attacker-controlled downloadURL values with common media or archive extensions such as .mp4, .mp3, .zip, .jpg, .png, .gif, and .webm to bypass SSRF validation. The server then...

7.1CVSS0.00206EPSS
Exploits0References1
Rows per page
Query Builder