Skip to content
cyberLOW2026-04-21 22:25 UTC

CVE-2026-41055 - AVideo has an incomplete fix for CVE-2026-33039 (SSRF)

CVE ID :CVE-2026-41055 Published : April 21, 2026, 10:25 p.m. | 34 minutes ago Description :WWBN AVideo is an open source video platform. In versions 29.0 and below an incomplete SSRF fix in AVideo's LiveLinks proxy adds `isSSRFSafeURL()` validation but leaves DNS TOCTOU vulnerabilities where

ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

Editorial policy · Report a correction