CVE-2026-33719 | WWBN AVideo up to 26.0 CDN Plugin Endpoint status.json.php par missing authentication

Inserito da Angelo Barbosa | Mar 23, 2026 | CVE

A vulnerability identified as critical has been detected in WWBN AVideo up to 26.0. Affected is an unknown function of the file plugin/CDN/status.json.php of the component CDN Plugin Endpoint. The manipulation of the argument par leads to missing authentication.

This vulnerability is documented as CVE-2026-33719. The attack can be initiated remotely. There is not any exploit available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-33719 | WWBN AVideo up to 26.0 CDN Plugin Endpoint status.json.php par missing authentication

Post correlati

CVE-2025-14692 | Mayan EDMS up to 4.10.1 /authentication/ redirect

CVE-2025-27417 | LabRedesCefetRJ WeGIA up to 3.2.15 adicionar_status_atendido.php status cross site scripting

CVE-2024-6496 | Light Poll Plugin up to 1.0.0 on WordPress cross-site request forgery

CVE-2023-39245 | Dell ESI for SAP LAMA up to 9.x EHAC cleartext transmission (dsa-2023-299)