Vulnerabilities > Wwbn > Avideo > 3.4.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-12 | CVE-2023-32073 | Command Injection vulnerability in Wwbn Avideo WWBN AVideo is an open source video platform. | 8.8 |
| 2023-05-08 | CVE-2023-30860 | Cross-site Scripting vulnerability in Wwbn Avideo WWBN AVideo is an open source video platform. | 5.4 |
| 2023-04-28 | CVE-2023-30854 | OS Command Injection vulnerability in Wwbn Avideo AVideo is an open source video platform. | 8.8 |
| 2023-04-25 | CVE-2023-25313 | OS Command Injection vulnerability in Wwbn Avideo OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature. | 9.8 |
| 2023-04-25 | CVE-2023-25314 | Cross-site Scripting vulnerability in Wwbn Avideo Cross Site Scripting (XSS) vulnerability in World Wide Broadcast Network AVideo before 12.4, allows attackers to gain sensitive information via the success parameter to /user. | 6.1 |