2 matches found
GHSA-8M5F-2XVP-2C8W WWBN AVideo recovery notification bypass vulnerability
A recovery notification bypass vulnerability exists in the userRecoverPass.php captcha validation functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted HTTP request can lead to silently create a recovery pass code for any user...
PT-2024-13877 · Avideo · Avideo
Name of the Vulnerable Software and Affected Versions: WWBN AVideo dev master commit 15fed957fb Description: A recovery notification bypass issue exists in the userRecoverPass.php captcha validation functionality. This allows a specially crafted HTTP request to silently create a recovery pass cod...