CVE-2026-33479 | WWBN AVideo up to 26.0 Session Cookie saveSort.json.php eval sections code injection

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability categorized as critical has been discovered in WWBN AVideo up to 26.0. Affected by this vulnerability is the function eval of the file saveSort.json.php of the component Session Cookie Handler. Executing a manipulation of the argument sections can lead to code injection.

This vulnerability appears as CVE-2026-33479. The attack may be performed from remote. There is no available exploit.

Applying a patch is advised to resolve this issue.

CVE-2026-33479 | WWBN AVideo up to 26.0 Session Cookie saveSort.json.php eval sections code injection

Post correlati

CVE-2023-34198 | Stormshield Network Security Services Inactive DHCP Interface access control

CVE-2025-48573 | Google Android 13/14/15/16 Foreground Service MediaSessionRecord.java sendCommand Local Privilege Escalation

CVE-2024-5310 | JFinalCMS up to 20221020 /admin/content Title cross site scripting (I8VHM2)

CVE-2024-21914 | Rockwell Automation FactoryTalk View ME up to 13 denial of service