CVE-2026-33764

Name of the Vulnerable Software and Affected Versions AVideo versions up to and including 26.0

Description The AVideo platform’s AI plugin contains a flaw in the save.json.php endpoint. This endpoint loads AI response objects using the $ REQUEST['id'] parameter, which is controlled by the attacker, without verifying that the AI response belongs to the specified video. An authenticated user with AI permissions can reference AI response IDs from other users’ private videos and apply the stolen AI-generated content—including titles, descriptions, keywords, summaries, and full transcriptions—to their own video, effectively exfiltrating the information. The vulnerability exists because the authorization flow checks that the user can edit the target video, but does not validate ownership when loading the AI response object. The ObjectYPT base class constructor performs a database lookup without any permission checks. The save.json.php endpoint utilizes the $ REQUEST['id'] parameter to load AI responses, and the loaded data is then applied to the attacker’s video using functions like $video->setTitle() and file put contents(). The delete.json.php endpoint correctly validates ownership, demonstrating that the developers intended to implement ownership validation but omitted it in the save endpoint. An attacker can enumerate AI response IDs to steal metadata and even the full transcription of private videos. This can lead to a confidentiality breach of private video content and metadata exfiltration.

Recommendations Versions prior to 26.1 should implement ownership validation in save.json.php to match the validation present in delete.json.php. Specifically, load the parent Ai responses record and verify that getVideos id() matches the provided $videos id.