Lucene search
K

6 matches found

Github Security Blog
Github Security Blog
added 2026/04/01 9:4 p.m.2 views

AVideo: Unauthenticated Live Stream Termination via RTMP Callback on_publish_done.php

Summary The AVideo onpublishdone.php endpoint in the Live plugin allows unauthenticated users to terminate any active live stream. The endpoint processes RTMP callback events to mark streams as finished in the database, but performs no authentication or authorization checks before doing so. An...

7.5CVSS5.9AI score0.00479EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/31 8:50 p.m.1 views

CVE-2026-34731

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo onpublishdone.php endpoint in the Live plugin allows unauthenticated users to terminate any active live stream. The endpoint processes RTMP callback events to mark streams as finished in the database, but perform...

7.5CVSS6AI score0.00479EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/31 8:50 p.m.1 views

CVE-2026-34731 AVideo: Unauthenticated Live Stream Termination via RTMP Callback on_publish_done.php

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo onpublishdone.php endpoint in the Live plugin allows unauthenticated users to terminate any active live stream. The endpoint processes RTMP callback events to mark streams as finished in the database, but perform...

7.5CVSS6AI score0.00479EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-16857

Malware in sbrugna...

9.8CVSS9.2AI score0.03192EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.2 views

SUSE CVE-2021-34548

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-003. An attacker can forge RELAYEND or RELAYRESOLVED to bypass the intended access control for ending a stream...

7.5CVSS8.2AI score0.02721EPSS
Exploits0References5
OSV
OSV
added 2019/07/23 11:36 a.m.5 views

OPENSUSE-SU-2019:1797-1 Security update for live555

This update for live555 fixes the following issues: - CVE-2019-9215: Malformed headers could have lead to invalid memory access in the parseAuthorizationHeader function. boo1127341 - CVE-2019-7314: Mishandled termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up could have lead t...

9.8CVSS10AI score0.03192EPSS
Exploits0References6
Rows per page
Query Builder