The Video Conferencing with Zoom plugin for WordPress is vulnerable to Sensitive Information Exposure due to hardcoded encryption key on the 'vczapi_encrypt_decrypt' function in versions up to, and including, 4.2.1. This makes it possible for unauthenticated malicious users to decrypt and view the meeting id and password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
imdpen video conferencing with zoom |