CVE-2025-62613P3MEDIUMCVSS 6.9PoCv>= 28.0, < 28.42025-10-22
CVE-2025-62613 [MEDIUM] CWE-79 CVE-2025-62613: VDO.Ninja is a tool that brings remote video feeds into OBS or other studio software via WebRTC. Fro
VDO.Ninja is a tool that brings remote video feeds into OBS or other studio software via WebRTC. From versions 28.0 to before 28.4, a reflected Cross-Site Scripting (XSS) vulnerability exists on examples/control.html through the room parameter, which is improperly sanitized before being rendered in the DOM. The application fails to validate and encod
nvd