CVE-2022-33147 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send a specially-crafted HTTP request to the aVideoEncoder endpoint to exploit this vulnerability. This vulnerability can be exploited by hackers to inject
CVE-2022-25972 An out-of-bounds write vulnerability in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4 can lead to code execution.
HDF5 file format is used to store large data sets in a data storage format similar to that of an SQL database. The HDF5 file
CVE-2022-30690 An XSS vulnerability exists in the image403 functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to arbitrary JavaScript execution.
As of November 2018, this issue is still not fixed. The update for this issue is still in testing. Visit this page to know more
CVE-2022-34652 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send an HTTP request to the following URL to exploit this vulnerability: To exploit this vulnerability, an attacker needs to host a
CVE-2022-33149 An SQL injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially crafted HTTP request can lead to a
END>
An attacker can send an HTTP request to the objectYPT endpoint to inject SQL. This injection can lead to a SQL injection, which can be
Episode
00:00:00
00:00:00