CVE-2026-33038

CVE-2026-33038 affects WWBN AVideo. In versions 25.0 and earlier, unauthenticated access to the web installer at install/checkConfiguration.php allows full application takeover by letting an attacker supply their own database, admin credentials, and configuration values, executing full initializa...

CVE-2026-33038 AVideo affected by unauthenticated application takeover via exposed web installer on uninitialized deployments

WWBN AVideo is an open source video platform. Versions 25.0 and below are vulnerable to unauthenticated application takeover through the install/checkConfiguration.php endpoint. install/checkConfiguration.php performs full application initialization: database setup, admin account creation, and...

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 25.0 contained security vulnerabilities. These vulnerabilities stemmed from the install/checkConfiguration.php endpoint, which allowed unverified attackers to complete...

Oracle Siebel Core - DB Deployment and Configuration CVE-2019-2965 Remote Security Vulnerability

Description Oracle Siebel Core - DB Deployment and Configuration is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Install - Configuration' component is affected. This vulnerability affects the following supported versions: 19.8 and pri...