CVE-2026-33492 | WWBN AVideo up to 26.0 _session_start PHPSESSID session fixiation

A vulnerability classified as critical has been found in WWBN AVideo up to 26.0. Impacted is the function _session_start. Performing a manipulation of the argument PHPSESSID results in session fixiation.

This vulnerability was named CVE-2026-33492. The attack may be initiated remotely. There is no available exploit.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More