163 matches found
GHSA-8P58-35C3-CCXX AVideo has an Unauthenticated Blind SQL Injection in RTMP on_publish Callback via Stream Name Parameter
Summary The RTMP onpublish callback at plugin/Live/onpublish.php is accessible without authentication. The $POST'name' parameter stream key is interpolated directly into SQL queries in two locations — LiveTransmitionHistory::getLatest and LiveTransmition::keyExists — without parameterized binding...
CVE-2026-1465
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...
CVE-2026-1465
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...
CVE-2026-1465
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...
EUVD-2026-4715
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...
CVE-2026-1465
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...
CVE-2026-1465
CVE-2026-1465 affects anyRTC-RTMP-OpenSource (before 1.0) via improper restriction of operations within the bounds of a memory buffer in third_party/faad2-2.7/libfaad modules (bits.C, syntax.C). Red Hat, NVD, OSV and CVE lists describe it as a heap-based buffer over-read/overflow in tildearrow/fu...
anyRTC-RTMP-OpenSource security vulnerabilities
anyRTC-RTMP-OpenSource is an open-source RTMP push/pull streaming tool developed by the anyrtc.io community. Versions of anyRTC-RTMP-OpenSource prior to version 1.0 contained security vulnerabilities, which were caused by improper memory buffer operation restrictions in the bits.C and syntax.C...
CVE-2018-10432
Pexip Infinity before 18 allows Remote Denial of Service TLS handshakes in RTMP...
CVE-2025-66378
Pexip Infinity 38.0 and 38.1 before 39.0 has insufficient access control in the RTMP implementation, allowing an attacker to disconnect RTMP streams traversing a Proxy Node...
CVE-2025-66378
CVE-2025-66378 affects Pexip Infinity 38.0 and 38.1 (before 39.0). The issue is insufficient access control in the RTMP implementation, allowing an attacker to disconnect RTMP streams traversing a Proxy Node. Supported by Red Hat and ENISA/NVD entries; PT-2025-53393 explicitly recommends updating...
Siemens SIMATIC S7-1500 Double Free (CVE-2022-42915)
curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTPS URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request HTTP...
EUVD-2005-3896
Malware in sbrugna...
EUVD-2005-3895
Malware in sbrugna...
EUVD-2021-19391
Malware in sbrugna...
EUVD-2010-1473
Malware in sbrugna...
EUVD-2018-2504
Malware in sbrugna...
EUVD-2017-3277
Malware in sbrugna...
EUVD-2022-39887
Malicious code in bioql PyPI...
CVE-2025-55634
Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows unauthorized attackers to cause a Denial of Service DoS via initiating a large number of simultaneous ffmpeg-based stream pushes...