Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
videowhisper vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-2297
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin 4.29.6 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) n parameter to ls/htmlchat.php or (2) bgcolor parameter to ls/index.php. ...
Videowhisper Videowhisper Live Streaming Integration 4.29.6
505
VMScore
CVE-2014-1908
The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allows remote malicious users to obtain sensitive information via a direct request, which reveals ...
Videowhisper Videowhisper Live Streaming Integration
1 EDB exploit
1000
VMScore
CVE-2014-1905
Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allows remote malicious users to execute arbitrary PHP code by uploading a file with a double extension, and then accessing the file v...
Videowhisper Videowhisper Live Streaming Integration
1 EDB exploit
383
VMScore
CVE-2014-4568
Cross-site scripting (XSS) vulnerability in posts/videowhisper/r_logout.php in the Video Posts Webcam Recorder plugin 1.55.4 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Videowhisper Video Posts Webcam Recorder
383
VMScore
CVE-2014-4570
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin prior to 3.31 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) room_name parameter to c_login.php or (2) room parameter to index.php in v...
Videowhisper Video Presentation
383
VMScore
CVE-2014-4569
Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the room_name parameter.
Videowhisper Videowhisper Live Streaming Integration 4.27.2
Videowhisper Videowhisper Live Streaming Integration 2.0
Videowhisper Videowhisper Live Streaming Integration 1.0.2
Videowhisper Videowhisper Live Streaming Integration 4.07
Videowhisper Videowhisper Live Streaming Integration 4.05
Videowhisper Videowhisper Live Streaming Integration 2.1
Videowhisper Videowhisper Live Streaming Integration 4.25
Videowhisper Videowhisper Live Streaming Integration 2.2
Videowhisper Videowhisper Live Streaming Integration
383
VMScore
CVE-2014-2715
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote malicious users to inject arbitrary web script or HTML via the (1) module or (2) message parameter to index.php.
Videowhisper Videowhisper 7.x-1.0
Videowhisper Videowhisper 7.x-1.x
Videowhisper Videowhisper 7.x-1.3
Videowhisper Videowhisper 7.x-1.1
435
VMScore
CVE-2014-1906
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) m parameter to lb_status.php; (2) msg parameter to vc_chatlog.ph...
Videowhisper Live Streaming Integration Plugin 4.27
Videowhisper Live Streaming Integration Plugin 2.0
Videowhisper Live Streaming Integration Plugin 4.07
Videowhisper Live Streaming Integration Plugin 4.25.3
Videowhisper Live Streaming Integration Plugin 2.1
Videowhisper Live Streaming Integration Plugin 2.2
Videowhisper Live Streaming Integration Plugin 4.27.3
Videowhisper Live Streaming Integration Plugin
Videowhisper Live Streaming Integration Plugin 4.05
Videowhisper Live Streaming Integration Plugin 1.0.2
Videowhisper Live Streaming Integration Plugin 4.25
1 EDB exploit
645
VMScore
CVE-2014-1907
Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin prior to 4.29.5 for WordPress allow remote malicious users to (1) read arbitrary files via a .. (dot dot) in the s parameter to ls/rtmp_login.php or (2) delete arbitrary files via a...
Videowhisper Live Streaming Integration Plugin
Videowhisper Live Streaming Integration Plugin 1.0.2
Videowhisper Live Streaming Integration Plugin 2.0
Videowhisper Live Streaming Integration Plugin 2.1
Videowhisper Live Streaming Integration Plugin 2.2
Videowhisper Live Streaming Integration Plugin 4.05
Videowhisper Live Streaming Integration Plugin 4.07
Videowhisper Live Streaming Integration Plugin 4.25
Videowhisper Live Streaming Integration Plugin 4.25.3
Videowhisper Live Streaming Integration Plugin 4.27
Videowhisper Live Streaming Integration Plugin 4.27.3
1 EDB exploit
NA
CVE-2014-19062
VideoWhisper Live Streaming Integration version 4.27.3 suffers from cross site scripting, remote shell upload, information exposure, and path traversal vulnerabilities.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »