CVE-2023-49738

Name of the Vulnerable Software and Affected Versions WWBN AVideo dev master commit 15fed957fb

Description An information disclosure issue exists in the image404Raw.php functionality. A specially crafted HTTP request can lead to arbitrary file read.

Recommendations For WWBN AVideo dev master commit 15fed957fb, consider restricting access to the image404Raw.php functionality until a patch is available. As a temporary workaround, avoid using this functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.