CVE-2026-45619

WWBN AVideo is an open source video platform. In 29.0 and earlier, EpgParser.php, plugin/AI/receiveAsync.json.php, and other locations do not use the $resolvedIP out-param of isSSRFSafeURL for DNS pinning via CURLOPTRESOLVE, opening DNS-rebinding TOCTOU...

CVE-2026-33764

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the AI plugin's save.json.php endpoint loads AI response objects using an attacker-controlled $REQUEST'id' parameter without validating that the AI response belongs to the specified video. An authenticated user wi...

CVE-2026-33764

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the AI plugin's save.json.php endpoint loads AI response objects using an attacker-controlled $REQUEST'id' parameter without validating that the AI response belongs to the specified video. An authenticated user wi...

CVE-2026-33764 AVideo: IDOR in AI Plugin Allows Stealing Other Users' AI-Generated Metadata and Transcriptions

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the AI plugin's save.json.php endpoint loads AI response objects using an attacker-controlled $REQUEST'id' parameter without validating that the AI response belongs to the specified video. An authenticated user wi...

CVE-2026-33764

Summary (CVE-2026-33764 / GHSA) An IDOR vulnerability exists in the AVideo AI plugin. The save.json.php endpoints for AI metatags and transcriptions load AI response objects by an attacker-controlled id without validating ownership against the target video. The authorization check validates Video...

GHSA-G39V-QRJ6-JXRH AVideo: IDOR in AI Plugin Allows Stealing Other Users' AI-Generated Metadata and Transcriptions

Summary The AI plugin's save.json.php endpoint loads AI response objects using an attacker-controlled $REQUEST'id' parameter without validating that the AI response belongs to the specified video. An authenticated user with AI permissions can reference any AI response ID — including those generat...

CVE-2025-47700 AI plugin APIs can be triggered using post actions

Mattermost Server versions 10.5.x = 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions...

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an information disclosure vulnerability. The vulnerability stems from an under-restricted LLM request domain. An attacker can exploit the vulnerability to perform prompt injecti...

WordPress Intelligence plugin <= 1.4.0 - Unauthenticated Full Path Disclosure vulnerability

Unauthenticated Full Path Disclosure vulnerability discovered by stealthcopter in WordPress Plugin Intelligence versions = 1.4.0...

WordPress Intelligence Plugin <= 1.4.0 is vulnerable to Sensitive Data Exposure

Software Intelligence Type Plugin Vulnerable versions = 1.4.0 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6573 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID bdfe8c7e8b17 Credits stealthcopter Required privileg...

CVE-2024-6573

CVE-2024-6573 affects the WordPress Intelligence plugin and describes a Full Path Disclosure vulnerability in all versions up to and including 1.4.0. The issue arises because the plugin does not block direct access to /vendor/levelten/intel/realtime/index.php and because display_errors is enabled...

PT-2024-37729 · WordPress · Intelligence Plugin

Name of the Vulnerable Software and Affected Versions: Intelligence plugin for WordPress versions up to, and including, 1.4.0 Description: The issue allows unauthenticated attackers to retrieve the full path of the web application, which can aid other attacks. This is due to the plugin not...