CVE-2026-33292 | WWBN AVideo up to 25.x HLS Streaming Endpoint view/hls.php videoDirectory path traversal

A vulnerability has been found in WWBN AVideo up to 25.x and classified as critical. This affects an unknown part of the file view/hls.php of the component HLS Streaming Endpoint. This manipulation of the argument videoDirectory causes path traversal.

This vulnerability appears as CVE-2026-33292. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More