QwikSec

Security Database

CVE

CWE

Training

CVE-2023-53773

Published: Dec 9, 2025

Modified: Apr 7, 2026

PUBLISHED

Description

MiniDVBLinux 5.4 contains an unauthenticated vulnerability in the tv_action.sh script that allows remote attackers to generate live stream snapshots through the Simple VDR Protocol. Attackers can request /tpl/tv_action.sh to create and retrieve a live TV screenshot stored in /var/www/images/tv.jpg without authentication.

Vendor	Product	Versions
MiniDVBLinux	MiniDVBLinux	affected `<=5.4`

Weaknesses (CWE)

References

ExploitDB-51095

exploit

MiniDVBLinux Product Homepage

product

Zero Science Lab Disclosure (ZSL-2022-5716)

third-party-advisory

VulnCheck Advisory: MiniDVBLinux 5.4 Unauthenticated Live Stream Disclosure via tv_action.sh

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.