CVE-2026-33717 | WWBN AVideo up to 26.0 aVideoEncoder.json.php downloadVideoFromDownloadURL resolution unrestricted upload

A vulnerability, which was classified as critical, has been found in WWBN AVideo up to 26.0. This affects the function downloadVideoFromDownloadURL of the file objects/aVideoEncoder.json.php. Performing a manipulation of the argument resolution results in unrestricted upload.

This vulnerability was named CVE-2026-33717. The attack may be initiated remotely. There is no available exploit.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More