CVE-2026-57946 | iv-org Invidious up to 25.x RSS Feed Playlist Endpoint authorization (ID 5775)

Inserito da Angelo Barbosa | Giu 29, 2026 | CVE

A vulnerability labeled as problematic has been found in iv-org Invidious up to 25.x. The impacted element is an unknown function of the component RSS Feed Playlist Endpoint. Such manipulation leads to missing authorization.

This vulnerability is listed as CVE-2026-57946. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.

CVE-2026-57946 | iv-org Invidious up to 25.x RSS Feed Playlist Endpoint authorization (ID 5775)

Post correlati

CVE-2024-49613 | Lodel Geraldo Simple Code Insert Shortcode Plugin up to 1.0 on WordPress sql injection

CVE-2026-8133 | zyx0814 FilePress up to 2.2.0 Shares Filelist API dzz/shares/admin.php order sql injection (Issue 70)

CVE-2024-7870 | PixelYourSite Plugin/PixelYourSite Pro Plugin on WordPress improper authentication

CVE-2025-66134 | NinjaTeam FileBird Pro Plugin up to 6.4.9 on WordPress authorization