20 matches found
CVE-2023-25699
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in VideoWhisper.Com VideoWhisper Live Streaming Integration allows OS Command Injection.This issue affects VideoWhisper Live Streaming Integration: from n/a through 5.5.15...
EUVD-2014-1969
Malware in sbrugna...
CVE-2013-5714
Multiple cross-site scripting XSS vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 message parameter. NOTE: some of these details are...
CVE-2025-26752
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through = 6.2...
CVE-2025-26753 WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through = 6.2...
CVE-2023-25699
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in VideoWhisper.Com VideoWhisper Live Streaming Integration allows OS Command Injection.This issue affects VideoWhisper Live Streaming Integration: from n/a through 5.5.15...
CVE-2023-25699
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in VideoWhisper.Com VideoWhisper Live Streaming Integration allows OS Command Injection.This issue affects VideoWhisper Live Streaming Integration: from n/a through 5.5.15...
CVE-2014-1908
The error-handling feature in 1 bp.php, 2 videowhisperstreaming.php, and 3 ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error messag...
Unrestricted file upload
Unrestricted file upload vulnerability in ls/vwsnapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, and then accessing the file via a direct request to a...
CVE-2014-1908
The error-handling feature in 1 bp.php, 2 videowhisperstreaming.php, and 3 ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error messag...
CVE-2014-1906
Multiple cross-site scripting XSS vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 m parameter to lbstatus.php; 2 msg parameter to vcchatlog.php; n parameter to 3 channel.php, ...
CVE-2014-1907
Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to 1 read arbitrary files via a .. dot dot in the s parameter to ls/rtmplogin.php or 2 delete arbitrary files via a .. dot dot in the s parameter t...
CVE-2014-1906
CVE-2014-1906 concerns the VideoWhisper Live Streaming Integration plugin for WordPress. The vulnerability involves multiple cross-site scripting (XSS) flaws in the plugin prior to version 4.29.5, allowing remote attackers to inject arbitrary script or HTML through various parameters (lb_status.p...
WordPress VideoWhisper Live Streaming Integration多个目录遍历漏洞
BUGTRAQ ID: 65877 CVECAN ID: CVE-2014-1907 WordPress VideoWhisper Live Streaming Integration软件可以将视频广播功能添加到WordPress站点,也可将实时视频流添加到博客页。 VideoWhisper Live Streaming Integration 4.27.3及其他版本没有有效过滤脚本"/wp-content/plugins/videowhisper-live-streaming-integration/ls/rtmplog in.php"内的"s" HTTP...
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor...
Wordpress VideoWhisper 4.27.3 - Multiple Vulnerabilities
Exploit for php platform in category web applications Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014...
WordPress VideoWhisper Live Streaming 4.29.6 Cross Site Scripting
============================================================== Title ...| XSS in VideoWhisper Live Streaming Version .| 4.29.6 Date ....| 23.02.2014 Found ...| HauntIT Blog Home ....| http://wordpress.org/plugins/ ==============================================================...
CVE-2013-5714
The CVE-2013-5714 entry concerns the VideoWhisper Live Streaming Integration WordPress plugin (versions 4.25.3 and earlier) with XSS in ls/htmlchat.php. An attacker can inject arbitrary script via the name or message parameter, enabling remote XSS. Documented impact is client-side script executio...
CVE-2013-5714
Multiple cross-site scripting XSS vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 message parameter. NOTE: some of these details are...
Wordpress videowhisper-live-streaming-integration Plugin Xss vulnerabilities
The Wordpress videowhisper-live-streaming-integration Plugin suffers from a Cross-Site Scripting vulnerability. Iranian Exploit DataBase Forum http://iedb.ir/acc http://iedb.ir Exploit Title : Wordpress videowhisper-live-streaming-integration Plugin Xss vulnerabilities Author : Iranian Exploit...