CVE-2025-48732
7.3HIGHAn incomplete blacklist exists in the .htaccess sample of WWBN AVideo 14.4 and dev master commit 8a8954ff. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can requ
Опубликовано: 7/24/2025Обновлено: 11/3/2025
Описание
An incomplete blacklist exists in the .htaccess sample of WWBN AVideo 14.4 and dev master commit 8a8954ff. A specially crafted HTTP request can lead to a arbitrary code execution. An attacker can request a .phar file to trigger this vulnerability.
ИИ-АнализНа базе ИИ
Затронутые продукты
wwbnavideo
14.4
Ссылки
- https://talosintelligence.com/vulnerability_reports/TALOS-2025-2213ExploitThird Party Advisory
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2213
- https://talosintelligence.com/vulnerability_reports/TALOS-2025-2213ExploitThird Party Advisory