CVE-2023-30842 Information

Apr 27, 2023 cve

Description

AVideo is an open-source video platform. Prior to version 12.4 AVideo is vulnerable to remote code execution when an attacker embeds a malicious video link. This issue is fixed in version 12.4.

Reference

https://github.com/WWBN/AVideo/commit/236228f15a9a31be5a0e60f05dac043682e49a5e https://github.com/WWBN/AVideo/security/advisories/GHSA-pgvh-p3g4-86jw

Share on: