CVE-2026-54458 | WWBN AVideo up to 29.0 YPTSocket Plugin MessageSQLiteV2.php onOpen webSocketSelfURI/page_title cross site scripting
A vulnerability was found in WWBN AVideo up to 29.0. It has been declared as problematic. Affected by this vulnerability is the function onOpen of the file plugin/YPTSocket/MessageSQLiteV2.php of the component YPTSocket Plugin. The manipulation of the argument webSocketSelfURI/page_title results in cross site scripting.
This vulnerability is cataloged as CVE-2026-54458. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More