CVE-2026-33683 | WWBN AVideo up to 26.0 Registered User xss_esc About cross site scripting

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability described as problematic has been identified in WWBN AVideo up to 26.0. This affects the function xss_esc of the component Registered User Handler. Such manipulation of the argument About leads to cross site scripting.

This vulnerability is traded as CVE-2026-33683. The attack may be launched remotely. There is no exploit available.

It is best practice to apply a patch to resolve this issue.

CVE-2026-33683 | WWBN AVideo up to 26.0 Registered User xss_esc About cross site scripting

Post correlati

CVE-2024-5966 | Grey Opaque Plugin up to 2.0.1 on WordPress Download-Button Shortcode cross site scripting

CVE-2024-39165 | Asial JpGraph Professional up to 4.2.6-pro QR/demoapp/qr_image.php data Privilege Escalation

CVE-2025-10095 | Proximus SMSEagle up to 6.10 sql injection

CVE-2023-52291 | Apache StreamPark up to 2.1.3 Maven Build Parameter Privilege Escalation