CVE-2016-20035 in Streaming Engine
Zusammenfassung
von MITRE • 16.03.2026
Wowza Streaming Engine 4.5.0 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions by crafting malicious web pages. Attackers can trick logged-in administrators into visiting a malicious site that submits POST requests to the user edit endpoint to create new admin accounts with arbitrary credentials.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.