Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-1654

Malicious code in bioql PyPI...

8CVSS6.3AI score0.00712EPSS
Exploits1References4
NVD
NVD
added 2023/05/08 7:15 p.m.22 views

CVE-2023-30860

WWBN AVideo is an open source video platform. In AVideo prior to version 12.4, a normal user can make a Meeting Schedule where the user can invite another user in that Meeting, but it does not properly sanitize the malicious characters when creating a Meeting Room. This allows attacker to insert...

8CVSS7.7AI score0.00712EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/05/08 6:4 p.m.24 views

CVE-2023-30860 WWBN/AVideo stored XSS vulnerability leads to takeover of any user's account, including admin's account

WWBN AVideo is an open source video platform. In AVideo prior to version 12.4, a normal user can make a Meeting Schedule where the user can invite another user in that Meeting, but it does not properly sanitize the malicious characters when creating a Meeting Room. This allows attacker to insert...

8CVSS7.9AI score0.00712EPSS
Exploits1References2
OSV
OSV
added 2023/05/08 6:4 p.m.24 views

CVE-2023-30860 WWBN/AVideo stored XSS vulnerability leads to takeover of any user's account, including admin's account

WWBN AVideo is an open source video platform. In AVideo prior to version 12.4, a normal user can make a Meeting Schedule where the user can invite another user in that Meeting, but it does not properly sanitize the malicious characters when creating a Meeting Room. This allows attacker to insert...

8CVSS6.4AI score0.00712EPSS
Exploits1References4
OSV
OSV
added 2023/05/01 10:30 p.m.30 views

GHSA-XR9H-P2RC-RPQM WWBN/AVideo stored XSS vulnerability leads to takeover of any user's account, including admin's account

In AVideo, a normal user can make a Meeting Schedule where the user can invite another user in that Meeting, but I found out that it did not properly sanitize the malicious characters when creating a Meeting Room. This leads the attacker to put malicious scripts. Impact: Since any USER including...

8CVSS6.1AI score0.00712EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/05/01 10:30 p.m.25 views

WWBN/AVideo stored XSS vulnerability leads to takeover of any user's account, including admin's account

In AVideo, a normal user can make a Meeting Schedule where the user can invite another user in that Meeting, but I found out that it did not properly sanitize the malicious characters when creating a Meeting Room. This leads the attacker to put malicious scripts. Impact: Since any USER including...

8CVSS5.7AI score0.00712EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder