Vulnerabilities > Wwbn

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-10	CVE-2023-49862	Externally Controlled Reference to a Resource in Another Sphere vulnerability in Wwbn Avideo An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. network low complexity wwbn CWE-610	6.5
2024-01-10	CVE-2023-49863	Externally Controlled Reference to a Resource in Another Sphere vulnerability in Wwbn Avideo An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. network low complexity wwbn CWE-610	6.5
2024-01-10	CVE-2023-49864	Externally Controlled Reference to a Resource in Another Sphere vulnerability in Wwbn Avideo Devmastercommit15Fed957Fb An information disclosure vulnerability exists in the aVideoEncoderReceiveImage.json.php image upload functionality of WWBN AVideo dev master commit 15fed957fb. network low complexity wwbn CWE-610	6.5
2024-01-10	CVE-2023-50172	Weak Password Recovery Mechanism for Forgotten Password vulnerability in Wwbn Avideo 15Fed957Fb A recovery notification bypass vulnerability exists in the userRecoverPass.php captcha validation functionality of WWBN AVideo dev master commit 15fed957fb. network low complexity wwbn CWE-640	5.3
2023-05-12	CVE-2023-32073	Command Injection vulnerability in Wwbn Avideo WWBN AVideo is an open source video platform. network low complexity wwbn CWE-77	8.8
2023-05-08	CVE-2023-30860	Cross-site Scripting vulnerability in Wwbn Avideo WWBN AVideo is an open source video platform. network low complexity wwbn CWE-79	5.4
2023-04-28	CVE-2023-30854	OS Command Injection vulnerability in Wwbn Avideo AVideo is an open source video platform. network low complexity wwbn CWE-78	8.8
2023-04-25	CVE-2023-25313	OS Command Injection vulnerability in Wwbn Avideo OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature. network low complexity wwbn CWE-78 critical	9.8
2023-04-25	CVE-2023-25314	Cross-site Scripting vulnerability in Wwbn Avideo Cross Site Scripting (XSS) vulnerability in World Wide Broadcast Network AVideo before 12.4, allows attackers to gain sensitive information via the success parameter to /user. network low complexity wwbn CWE-79	6.1
2022-04-05	CVE-2022-27462	Cross-site Scripting vulnerability in Wwbn Avideo 10.1/10.2/8.9 Cross Site Scripting (XSS) vulnerability in objects/function.php in function getDeviceID in WWBN AVideo through 11.6, via the yptDevice parameter to view/include/head.php. network wwbn CWE-79	4.3

Vulnerabilities > Wwbn {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wwbn"}]}

Vulnerabilities > Wwbn