CVE-2026-47694 | WWBN AVideo up to 29.0 Description category_description cross site scripting (GHSA-c8h8-vq34-9fw2)

Inserito da Angelo Barbosa | Mag 29, 2026 | CVE

A vulnerability categorized as problematic has been discovered in WWBN AVideo up to 29.0. The impacted element is the function category_description of the component Description Handler. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2026-47694. The attack can be launched remotely. No exploit exists.

CVE-2026-47694 | WWBN AVideo up to 29.0 Description category_description cross site scripting (GHSA-c8h8-vq34-9fw2)

Post correlati

CVE-2025-65018 | libpng up to 1.6.50 png_combine_row heap-based overflow

CVE-2024-45046 | PHPOffice PhpSpreadsheet up to 2.0.x cross site scripting

CVE-2025-24964 | vitest-dev vitest up to 0.0.125/1.6.0/2.1.8/3.0.4 API Server missing origin validation in websockets (GHSA-9crc-q9x8-hgqq)

CVE-2025-13510 | Iskra iHUB/iHUB Lite missing authentication (icsa-25-336-02)