Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AVideo < 20.1 User Information Disclosure via Public API
Vulnerability Description
AVideo versions prior to 20.1 expose sensitive user information through an unauthenticated public API endpoint. Responses include emails, usernames, administrative status, and last login times, enabling user enumeration and privacy violations.
CVSS Information
N/A
Vulnerability Type
侵犯隐私
Vulnerability Title
AVideo 安全漏洞
Vulnerability Description
AVideo是World Wide Broadcast Network开源的一个广播网络创建工具。 AVideo 20.0之前版本存在安全漏洞,该漏洞源于未经验证的公共API端点暴露敏感用户信息,可能导致用户枚举和隐私侵犯。
CVSS Information
N/A
Vulnerability Type
N/A