44 matches found
Company that Secretly Records and Publishes Zoom Meetings
WebinarTV searches the internet for public Zoom invites, joins the meetings, secretly records them, and publishes alternate link the recordings. It doesn't use the Zoom record feature, so Zoom can't do anything about it...
PT-2026-28420
Name of the Vulnerable Software and Affected Versions Mattermost Plugins versions 10.11.11.0 and 11.4 Description Mattermost plugins do not properly validate timestamps in webhook requests. This allows an attacker to repeatedly send webhook requests, potentially corrupting the state of Zoom...
CVE-2025-49919
Insertion of Sensitive Information Into Sent Data vulnerability in DigitalME eRoom eroom-zoom-meetings-webinar allows Retrieve Embedded Sensitive Data.This issue affects eRoom: from n/a through = 1.5.6...
CVE-2025-49919
Insertion of Sensitive Information Into Sent Data vulnerability in DigitalME eRoom eroom-zoom-meetings-webinar allows Retrieve Embedded Sensitive Data.This issue affects eRoom: from n/a through = 1.5.6...
CVE-2025-49919
CVE-2025-49919 is a vulnerability in the WordPress plugin “eRoom – Webinar & Meeting Plugin for Zoom, Google Meet, Microsoft Teams” (WPCenter eRoom) rated as Medium (CVSS 3.1: 5.8). Affected versions: eRoom up to 1.5.6. Description in the initial document: Insertion of Sensitive Information Into ...
EUVD-2023-56143
Malicious code in bioql PyPI...
EUVD-2022-30275
Malicious code in bioql PyPI...
EUVD-2022-46473
Malicious code in bioql PyPI...
EUVD-2022-30274
Malicious code in bioql PyPI...
CVE-2022-43472
Missing Authorization vulnerability in StylemixThemes eRoom – Zoom Meetings & Webinar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects eRoom – Zoom Meetings & Webinar: from n/a through 1.4.6...
CVE-2022-43472
Missing Authorization vulnerability in StylemixThemes eRoom – Zoom Meetings & Webinar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects eRoom – Zoom Meetings & Webinar: from n/a through 1.4.6...
CVE-2022-43472
CVE-2022-43472 affects the WordPress plugin eRoom – Zoom Meetings & Webinars (StylemixThemes eRoom) up to version 1.4.6, with a Missing Authorization (Broken Access Control) vulnerability due to incorrectly configured access control security levels. The issue allows unauthorized access due to ins...
WordPress plugin eRoom – Zoom Meetings & Webinar 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
CVE-2024-3275
The eRoom – Zoom Meetings & Webinars plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.18 via the searchposts function. This makes it possible for authenticated attackers, with subscriber access and higher, to obtain post excerpts...
WordPress eRoom – Zoom Meetings & Webinar plugin <= 1.4.18 - Missing Authorization to Information Exposure vulnerability
Missing Authorization to Information Exposure vulnerability discovered by Krzysztof Zając in WordPress Plugin eRoom versions = 1.4.18...
WordPress eRoom – Zoom Meetings & Webinar Plugin <= 1.4.18 is vulnerable to Broken Access Control
Software eRoom – Zoom Meetings & Webinar Type Plugin Vulnerable versions = 1.4.18 Fixed in 1.4.19 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-3275 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7f0c5109ca2f Credits Krzysztof...
CVE-2023-51423
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instan...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instan...
CVE-2023-51422
Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings |...
CVE-2023-51422
Deserialization of Untrusted Data vulnerability in Saleswonder Team Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition.This issue affects Webinar Plugin: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings |...