3 matches found
CVE-2014-4567
Cross-site scripting XSS vulnerability in comments/videowhisper2/rlogout.php in the Video Comments Webcam Recorder plugin 1.55, as downloaded before 20140116 for WordPress allows remote attackers to inject arbitrary web script or HTML via the message parameter...
CVE-2014-4567
Cross-site scripting XSS vulnerability in comments/videowhisper2/rlogout.php in the Video Comments Webcam Recorder plugin 1.55, as downloaded before 20140116 for WordPress allows remote attackers to inject arbitrary web script or HTML via the message parameter...
CVE-2014-4567
CVE-2014-4567 : XSS in the WordPress Video Comments Webcam Recorder plugin (version ~1.55, affected when downloaded before 20140116) located in comments/videowhisper2/r_logout.php . Root cause: insufficient validation of client-side data in the web app, allowing injection of arbitrary script/HTML...