CVE-2016-20036 | Wowza Streaming Engine 4.5.0 appName/vhost/uiAppType/wowzaCloudDestinationType cross site scripting (Exploit 40135)

Inserito da Angelo Barbosa | Mar 15, 2026 | CVE

A vulnerability classified as problematic was found in Wowza Streaming Engine 4.5.0. Affected by this issue is some unknown functionality. Such manipulation of the argument appName/vhost/uiAppType/wowzaCloudDestinationType leads to cross site scripting.

This vulnerability is documented as CVE-2016-20036. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2016-20036 | Wowza Streaming Engine 4.5.0 appName/vhost/uiAppType/wowzaCloudDestinationType cross site scripting (Exploit 40135)

Post correlati

CVE-2024-47828 | ampache up to 6.6.0 Request cross-site request forgery (GHSA-p9cq-2qph-55f2)

CVE-2025-11666 | Tenda RP3 Pro up to 22.5.7.93 Firmware Update force_upgrade.sh current_force_upgrade_pwd hard-coded password

CVE-2025-14267 | M-Files Server up to 25.12 improper removal of sensitive information before storage or transfer

CVE-2025-13588 | lKinderBueno Streamity Xtream IPTV Player up to 2.8 public/proxy.php Nusẽtɔwo aɖe le be wotsɔe ɖe agbe. server-side request forgery