CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

VulnCheck KEV•added 2025/06/07 12:0 a.m.•3 views

VulnCheck KEV: CVE-2023-48728

A cross-site scripting xss vulnerability exists in the functiongetOpenGraph videoName functionality of WWBN AVideo 11.6 and dev master commit 3c6bb3ff. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a user to visit a webpage to trigger this...

9.6CVSS5.8AI score0.02268EPSS

Exploits1References1

CNNVD•added 2024/01/10 12:0 a.m.•5 views

WWBN AVideo Cross-Site Scripting Vulnerability

WWBN AVideo is a video platform builder written in PHP by the WWBN team. A cross-site scripting vulnerability exists in WWBN AVideo, which stems from a cross-site scripting xss vulnerability in the functiongetOpenGraph videoName method...

9.6CVSS6.3AI score0.02268EPSS

Exploits1References2

Positive Technologies•added 2024/01/10 12:0 a.m.•5 views

PT-2024-13632 · Wwbn · Wwbn Avideo

Name of the Vulnerable Software and Affected Versions: WWBN AVideo versions 11.6 Description: A cross-site scripting xss vulnerability exists in the function getOpenGraph videoName functionality. A specially crafted HTTP request can lead to arbitrary Javascript execution. An attacker can get a us...

9.6CVSS6.6AI score0.02268EPSS

Exploits1References4

OSV•added 2021/11/01 12:15 p.m.•3 views

CVE-2021-25878

AVideo/YouPHPTube 10.0 and prior is affected by multiple reflected Cross Script Scripting vulnerabilities via the videoName parameter which allows a remote attacker to steal administrators' session cookies or perform actions as an administrator...

6.1CVSS5.8AI score0.01148EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by