2 matches found
CVE-2026-41055
creationtimestamp| type| source ---|---|--- 2026-04-21 23:22:31+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk24sardg72f 2026-04-22 01:18:49+00:00| published-proof-of-concept| Telegram/AsK9uQCoE0LPzwbkNe8abRZIpzVzCCIAKmN05DDH2W6pw...
CVE-2026-41055
WWBN AVideo is an open source video platform. In versions 29.0 and below, an incomplete SSRF fix in AVideo's LiveLinks proxy adds isSSRFSafeURL validation but leaves DNS TOCTOU vulnerabilities where DNS rebinding between validation and the actual HTTP request redirects traffic to internal...