Lucene search
High-Tech Bridge SAPATCHSTACK:227672BA9B2061DFDF8D3875926D5F20HistoryFeb 07, 2014 - 12:00 a.m.
WordPress VideoWhisper Live Streaming Integration Plugin <= 4.29.4 - Multiple Directory Traversal
2014-02-0700:00:00
High-Tech Bridge SA
patchstack.com
8
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
Because of these vulnerabilities, the attackers can delete arbitrary files in the โsโ parameter to ls/rtmp_logout.php or read arbitrary files in the โsโ parameter to ls/rtmp_login.php.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| videowhisper live streaming integration | le | 4.29.4 |
Related
seebug
seebug
WordPress VideoWhisper Live Streaming Integrationๅคไธช็ฎๅฝ้ๅๆผๆด
2014-03-03 00:00:00
prion
prion
Directory traversal
2014-03-06 15:55:00
cve
cve
CVE-2014-1907
2014-03-06 15:55:00
packetstorm
packetstorm
exploitpack
exploitpack
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
openvas
openvas
WordPress VideoWhisper Live Streaming Integration Multiple Vulnerabilities
2014-04-01 00:00:00
wpvulndb
wpvulndb
VideoWhisper Live Streaming Integration 4.27.3 - Multiple Vulnerabilities
2014-08-01 00:00:00
securityvulns
securityvulns
htbridge
htbridge
exploitdb
exploitdb
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
Related for PATCHSTACK:227672BA9B2061DFDF8D3875926D5F20