GHSA-8qm8-g55h-xmqr: WWBN AVideo is missing CSRF protection in objects/commentDelete.json.php enables mass comment deletion against moderators and content creators

April 14, 2026

This advisory has been withdrawn.

References

github.com/WWBN/AVideo
github.com/WWBN/AVideo/commit/184f36b1896f3364f864f17c1acca3dd8df3af27
github.com/WWBN/AVideo/security/advisories/GHSA-8qm8-g55h-xmqr
github.com/advisories/GHSA-8qm8-g55h-xmqr

Code Behaviors & Features

Detect and mitigate GHSA-8qm8-g55h-xmqr with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →