Chocapikk/CVE-2024-31819

Releases0

Stars4

Unauthenticated Remote Code Execution (RCE) Vulnerability in WWBNIndex Plugin of AVideo Platform from 12.4 to 14.2

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-31819 ↗	Apr 10, 2024Wednesday, 10 April 2024, 20:15	9.8 CRITICAL	—
An issue in WWBN AVideo v.12.4 through v.14.2 allows a remote attacker to execute arbitrary code via the systemRootPath parameter of the submitIndex.php component.