CVE-2025-34440

Published December 17th, 2025

View on NVD ↗

CVSS v3

6.1

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

AVideo versions prior to 20.1 contain an open redirect vulnerability caused by insufficient validation of the siteRedirectUri parameter during user registration. Attackers can redirect users to external sites, facilitating phishing attacks.

WWBN/AVideo

Create Your Own Broadcast Network With AVideo Platform Open-Source. OAVP OVP

GitHub

2.1K