CNNVD-202507-3102 Information
Jul 24, 2025
cve
CNNVD ID
CNNVD-202507-3102
Related CVE
- CNNVD Published: 2025-07-24
Description (Chinese)
WWBN AVideo是WWBN团队的一个由PHP编写的视频平台建站系统。 WWBN AVideo 14.4版本存在竞争条件问题漏洞,该漏洞源于aVideoEncoder.json.php解压功能存在竞争条件,可能导致任意代码执行。
Description (English)
WWBN AVideo is a video platform construction system prepared by PHP of the WWBN team. WWBN AVideo 14.4 has a gap in competition conditions, which stems from the competitive conditions of the aVideo Encoder.json.php decompression function, which may lead to arbitrary code enforcement.
Hazard Level
Medium
Vulnerability Type
竞争条件问题
Affected Vendor
WWBN
Published
2025-07-24
Last Modified
2026-02-24
References
https://talosintelligence.com/vulnerability_reports/TALOS-2025-2212
Patch
https://github.com/WWBN/AVideo/releases
Share on: