Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

WWBN — Vulnerabilities & Security Advisories 164

Browse all 164 CVE security advisories affecting WWBN. AI-powered Chinese analysis, POCs, and references for each vulnerability.

WWBN operates as a provider of web-based business solutions, primarily focusing on content management and e-commerce platforms that enable organizations to manage digital assets and online transactions. Historically, its software has been susceptible to a wide array of critical vulnerabilities, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and SQL Injection, often stemming from insufficient input validation and outdated dependencies. These flaws have frequently allowed attackers to escalate privileges, execute arbitrary commands, or exfiltrate sensitive data. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) indicates persistent security challenges within the codebase, reflecting difficulties in maintaining rigorous patch management and secure coding practices over time. Consequently, organizations deploying WWBN solutions face significant risks if they do not implement robust network segmentation and timely updates to mitigate these known attack vectors.

Top products by WWBN: AVideo AVideo-Encoder
Unknown2026-04-22
fix: Enhance URL validation to enforce protocol whitelist for statsURL · WWBN/AVideo@78bccae · GitHub
HighCVE-2026-335022026-04-22
Incomplete fix for CVE-2026-33502: Command Injection in AVideo · Advisory · WWBN/AVideo · GitHub
High2026-04-22
fix: Secure command execution by escaping shell arguments for clone s… · WWBN/AVideo@473c609 · GitHub
HighCVE-2024-413042026-04-22
RCE cause by clonesite plugin · Advisory · WWBN/AVideo · GitHub
High2026-04-22
fix: Enhance duration validation and output encoding to prevent XSS v… · WWBN/AVideo@bcba324 · GitHub
MediumCVE-2026-335002026-04-22
Incomplete fix for CVE-2026-33500: XSS in AVideo · Advisory · WWBN/AVideo · GitHub
Medium2026-04-22
Stored XSS via Unanchored Duration Regex in Video Encoder Receiver · Advisory · WWBN/AVideo · GitHub
High2026-04-22
fix: Improve security by blocking directory traversal in URL paths · WWBN/AVideo@2375eb5 · GitHub
High2026-04-22
fix: Enhance path traversal protection in URL handling and file access · WWBN/AVideo@bd11c16 · GitHub
Medium2026-04-22
fix: Enhance CORS security by validating origins for credentialed req… · WWBN/AVideo@caf705f · GitHub
Medium2026-04-22
fix: Refactor CORS preflight handling for improved security and clarity · WWBN/AVideo@5e2b897 · GitHub
High2026-04-22
CORS Origin Reflection with Credentials on Sensitive API Endpoints Enables Cross-Origin Account Takeover · Advisory · WW
High2026-04-22
CORS Origin Reflection Bypass via plugin/API/router.php and allowOrigin(true) Exposes Authenticated API Responses · Advi
High2026-04-22
fix: Improve SSRF protection by enforcing same-origin requests with m… · WWBN/AVideo@a0156a6 · GitHub
HighCVE-2024-410602026-04-22
SSRF via same-domain hostname with alternate port bypasses isSSRFSafeURL · Advisory · WWBN/AVideo · GitHub
MediumCVE-2026-332932026-04-22
Incomplete fix for CVE-2026-33293: Path Traversal in AVideo · Advisory · WWBN/AVideo · GitHub
High2026-04-22
fix: Enhance SSRF protection by implementing DNS pinning in proxy req… · WWBN/AVideo@8d8fc0c · GitHub
MediumCVE-2026-330392026-04-22
Incomplete fix for CVE-2026-33039: SSRF in AVideo · Advisory · WWBN/AVideo · GitHub
High2026-04-22
fix: Add request validation to prevent untrusted access in category a… · WWBN/AVideo@ee56151 · GitHub
High2026-04-22
Multiple CSRF Vulnerabilities in Admin JSON Endpoints (Category CRUD, Plugin Update Script) · Advisory · WWBN/AVideo · G

Showing up to 20 recent security advisories. View all →

This page lists every published CVE security advisory associated with WWBN. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.