8 matches found
WordPress VideoWhisper Live Streaming Integration Plugin Unrestricted File Upload (CVE-2014-1905)
An unauthorized file upload vulnerability has been reported in VideoWhisper Live Streaming Integration plugin for WordPress. A remote attacker could exploit this vulnerability by uploading a file to a server running the vulnerable application. Successful exploitation of this vulnerability could...
CVE-2014-1905
CVE-2014-1905 affects the VideoWhisper Live Streaming Integration WordPress plugin (before version 4.29.5). The Unrestricted File Upload vulnerability in ls/vw_snapshots.php allows remote code execution by uploading a file with a double extension (e.g., .php.jpg) and accessing it directly under w...
Multiple Vulnerabilities in VideoWhisper Live Streaming Integration WP Plugin
Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014 Vendor Patch: February 7, 2014...
WordPress VideoWhisper Live Streaming Integration任意文件上传漏洞
Bugtraq ID:65866 CVE ID:CVE-2014-1905 WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志。 WordPress VideoWhisper Live Streaming Integration所包含的"/wp-content/plugins/videowhisper-live-streaming-integration/ls/vwsnaps hots.php"在上传文件到服务器时没有正确校验恶意文件扩展,可导致远程攻击者上传和执行任意PHP文件。 0 WordPress...
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor...
Wordpress VideoWhisper 4.27.3 - Multiple Vulnerabilities
Exploit for php platform in category web applications Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014...
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014 Vendor Patch: February 7, 2014...
VideoWhisper Live Streaming Integration 4.27.3 XSS / Shell Upload / Traversal
Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014 Vendor Patch: February 7, 2014...