CVE-2026-3682 | welovemedia FFmate up to 2.0.15 ffmpeg.go Execute argument injection

Inserito da Angelo Barbosa | Mar 6, 2026 | CVE

A vulnerability has been found in welovemedia FFmate up to 2.0.15 and classified as critical. This vulnerability affects the function Execute of the file /internal/service/ffmpeg/ffmpeg.go. The manipulation leads to argument injection.

This vulnerability is listed as CVE-2026-3682. The attack may be initiated remotely. In addition, an exploit is available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-3682 | welovemedia FFmate up to 2.0.15 ffmpeg.go Execute argument injection

Post correlati

CVE-2024-6401 | SFS Consulting InsureE GL up to 4.6.1 sql injection

CVE-2024-2992 | Tenda FH1203 2.0.1.6 /goform/setcfm formSetCfm funcpara1 stack-based overflow

CVE-2025-8737 | zlt2000 microservices-platform up to 6.0.0 OauthLogoutSuccessHandler.java onLogoutSuccess redirect_url (Issue 78)

CVE-2025-10744 | Managefy File Manager, Code Editor, and Backup Plugin up to 1.6.1 on WordPress information disclosure