Wwbn Avideo Vulnerabilities

3 advisories affecting Wwbn Avideo

3

Total CVEs

3

Critical

0

High

CVE-2026-33297

Mar 23, 2026

Critical (9.1)

WWBN AVideo is an open source video platform. Prior to version 26.0, the `setPassword.json.php` endpoint in the CustomizeUser plugin allows administrators to set a channel password for any user. Due t...

Read Advisory

CVE-2026-33351

Mar 23, 2026

Critical (9.1)

WWBN AVideo is an open source video platform. Prior to version 26.0, a Server-Side Request Forgery (SSRF) vulnerability exists in `plugin/Live/standAloneFiles/saveDVR.json.php`. When the AVideo Live p...

Read Advisory

CVE-2026-33352

Mar 23, 2026

Critical (9.8)

WWBN AVideo is an open source video platform. Prior to version 26.0, an unauthenticated SQL injection vulnerability exists in `objects/category.php` in the `getAllCategories()` method. The `doNotShowC...

Read Advisory

Never Miss a Critical Alert

CVE advisories, breach reports, and threat intel — delivered daily to your inbox.