CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Circl•added 2018/10/05 2:25 a.m.•3 views

CVE-2015-9271

creationtimestamp| type| source ---|---|--- 2018-10-05 02:25:12+00:00| seen| https://t.me/cibsecurity/536...

9.8CVSS8.8AI score0.04323EPSS

Exploits1References1

NVD•added 2018/10/04 11:29 p.m.•19 views

CVE-2015-9271

The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vwupload.php considers a file safe when "html" are the last four characters, as demonstrated by a .phtml file containing PHP code, a different...

9.8CVSS9.8AI score0.04323EPSS

Exploits1References1

CVE•added 2018/10/04 11:0 p.m.•92 views

CVE-2015-9271

CVE-2015-9271 affects the VideoWhisper videowhisper-video-conference-integration plugin for WordPress, version 4.91.8. The root cause is in vc/vw_upload.php, which treats a file as safe if the last four characters are 'html', enabling remote code execution via uploaded files containing PHP in a ....

9.8CVSS9.6AI score0.04323EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by