Wwbn Security Vulnerabilities (CVEs)

Track 21 security vulnerabilities affecting Wwbn products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

6 Critical

11 High

4 Medium

Sort by:

🔔 Get Alerts for Wwbn

CVE-2020-37173 7.5

AVideo Platform 8.1 contains an information disclosure vulnerability that allows attackers to enumerate user details through the playlistsFromUser.jso...

Feb 11, 2026

CVE-2020-37158 5.3

CVE-2020-37158 is a CSRF vulnerability in AVideo Platform 8.1 that allows attackers to reset user passwords without authentication by exploiting the p...

Feb 11, 2026

CVE-2025-34436 8.8

AVideo versions before 20.1 contain an insecure direct object reference vulnerability that allows any authenticated user to upload files into other us...

Dec 17, 2025

CVE-2025-34437 8.8

This vulnerability allows any authenticated user to upload comment images to videos owned by other users in AVideo. Attackers can perform unauthorized...

Dec 17, 2025

CVE-2025-34438 8.1

AVideo versions before 20.1 contain an insecure direct object reference vulnerability that allows authenticated users with upload permissions to modif...

Dec 17, 2025

CVE-2025-34439 6.1

AVideo versions before 20.1 contain an open redirect vulnerability in the login functionality. Attackers can craft malicious links that redirect users...

Dec 17, 2025

CVE-2025-34440 6.1

AVideo versions before 20.1 contain an open redirect vulnerability in the user registration process. Attackers can manipulate the siteRedirectUri para...

Dec 17, 2025

CVE-2025-34441 7.5

AVideo versions before 20.1 expose sensitive user information through an unauthenticated public API endpoint. This allows attackers to enumerate users...

Dec 17, 2025

CVE-2025-34442 7.5

AVideo versions before 20.1 expose absolute server filesystem paths through public API endpoints. This information disclosure vulnerability reveals in...

Dec 17, 2025

CVE-2025-34434 9.1

AVideo versions before 20.1 with the ImageGallery plugin enabled are vulnerable to unauthenticated file upload and deletion. Attackers can upload mali...

Dec 17, 2025

CVE-2025-34435 6.5

AVideo versions before 20.1 contain an insecure direct object reference (IDOR) vulnerability that allows any authenticated user to delete media files ...

Dec 17, 2025

CVE-2025-48732 7.3

An incomplete blacklist in WWBN AVideo's .htaccess sample allows attackers to execute arbitrary code by requesting specially crafted .phar files. This...

Jul 24, 2025

CVE-2025-50128 9.6

A stored cross-site scripting vulnerability in WWBN AVideo allows attackers to inject malicious JavaScript via the videoNotFound 404ErrorMsg parameter...

Jul 24, 2025

CVE-2025-41420 9.6

A cross-site scripting vulnerability in WWBN AVideo's userLogin cancelUri parameter allows attackers to execute arbitrary JavaScript when users visit ...

Jul 24, 2025

CVE-2025-25214 8.8

A race condition vulnerability in WWBN AVideo's aVideoEncoder.json.php unzip functionality allows attackers to execute arbitrary code through speciall...

Jul 24, 2025

CVE-2023-49589 8.8

This vulnerability allows attackers to reset arbitrary user passwords in WWBN AVideo by exploiting insufficient entropy in password recovery token gen...

Jan 10, 2024

CVE-2023-49599 9.8

This vulnerability allows attackers to forge password recovery codes for admin users in WWBN AVideo by exploiting weak salt generation. Attackers can ...

Jan 10, 2024

CVE-2023-49738 7.5

This vulnerability allows attackers to read arbitrary files on WWBN AVideo servers by exploiting improper input validation in the image404Raw.php scri...

Jan 10, 2024

CVE-2023-47861 9.0

A cross-site scripting vulnerability in WWBN AVideo's channelBody.php allows attackers to inject malicious JavaScript via user name input. When exploi...

Jan 10, 2024

CVE-2023-48728 9.6

This is a stored cross-site scripting (XSS) vulnerability in WWBN AVideo's getOpenGraph videoName functionality that allows attackers to inject malici...

Jan 10, 2024

CVE-2023-30860 8.0

This is a stored cross-site scripting (XSS) vulnerability in WWBN AVideo's meeting scheduling feature. Attackers can inject malicious scripts into mee...

May 8, 2023

Why Monitor Wwbn Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 21+ known vulnerabilities affecting Wwbn products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Wwbn packages in under 60 seconds. No agents required - completely agentless scanning that works across Wwbn deployments.

Free vulnerability database: Access detailed information about every Wwbn CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Wwbn CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Wwbn CVEs Free