Vulnerabilities > Wwbn > High

DATE CVE VULNERABILITY TITLE RISK
2024-01-10 CVE-2023-49589 Unspecified vulnerability in Wwbn Avideo 15Fed957Fb
An insufficient entropy vulnerability exists in the userRecoverPass.php recoverPass generation functionality of WWBN AVideo dev master commit 15fed957fb.
network
low complexity
wwbn
8.8
8.8
2024-01-10 CVE-2023-49715 Unrestricted Upload of File with Dangerous Type vulnerability in Wwbn Avideo 15Fed957Fb
A unrestricted php file upload vulnerability exists in the import.json.php temporary copy functionality of WWBN AVideo dev master commit 15fed957fb.
network
low complexity
wwbn CWE-434
8.8
8.8
2024-01-10 CVE-2023-49738 Unspecified vulnerability in Wwbn Avideo 15Fed957Fb
An information disclosure vulnerability exists in the image404Raw.php functionality of WWBN AVideo dev master commit 15fed957fb.
network
low complexity
wwbn
7.5
7.5
2023-05-12 CVE-2023-32073 Unspecified vulnerability in Wwbn Avideo
WWBN AVideo is an open source video platform.
network
low complexity
wwbn
8.8
8.8
2023-04-28 CVE-2023-30854 Unspecified vulnerability in Wwbn Avideo
AVideo is an open source video platform.
network
low complexity
wwbn
8.8
8.8
2022-08-22 CVE-2022-29468 Unspecified vulnerability in Wwbn Avideo 11.6
A cross-site request forgery (CSRF) vulnerability exists in WWBN AVideo 11.6 and dev master commit 3f7c0364.
network
low complexity
wwbn
8.8
8.8
2022-08-22 CVE-2022-30534 Unspecified vulnerability in Wwbn Avideo 11.6
An OS command injection vulnerability exists in the aVideoEncoder chunkfile functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364.
network
low complexity
wwbn
8.8
8.8
2022-08-22 CVE-2022-30605 Unspecified vulnerability in Wwbn Avideo 11.6
A privilege escalation vulnerability exists in the session id functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364.
network
low complexity
wwbn
8.8
8.8
2022-08-22 CVE-2022-32282 Improper Authentication vulnerability in Wwbn Avideo 11.6
An improper password check exists in the login functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364.
network
low complexity
wwbn CWE-287
8.8
8.8
2022-08-22 CVE-2022-32572 Unspecified vulnerability in Wwbn Avideo 11.6
An os command injection vulnerability exists in the aVideoEncoder wget functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364.
network
low complexity
wwbn
8.8
8.8