Lucene search

K
prionPRIOn knowledge basePRION:CVE-2015-9271
HistoryOct 04, 2018 - 11:29 p.m.

Input validation

2018-10-0423:29:00
PRIOn knowledge base
www.prio-n.com
7

AI Score

8

Confidence

Low

EPSS

0.018

Percentile

88.2%

The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when “html” are the last four characters, as demonstrated by a .phtml file containing PHP code, a different vulnerability than CVE-2014-1905.

CPENameOperatorVersion
video_conferenceeq4.91.8