WordPress Video Comments Webcam Recorder Cross-Site Scripting Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Video Comments Webcam Recorder is a video capture plugin used in... A cross-site scripting vulnerability exists in the...

CVE-2014-4567

Cross-site scripting XSS vulnerability in comments/videowhisper2/rlogout.php in the Video Comments Webcam Recorder plugin 1.55, as downloaded before 20140116 for WordPress allows remote attackers to inject arbitrary web script or HTML via the message parameter...

CVE-2014-4568

The CVE-2014-4568 entry refers to a Cross-Site Scripting (XSS) vulnerability in the Video Posts Webcam Recorder WordPress plugin. Affected is version 1.55.4 and earlier, with the issue located in posts/videowhisper/r_logout.php where the message parameter can be exploited to inject arbitrary web ...

WordPress Video Posts Webcam Recorder Plugin <= 1.55.4 - XSS

Because of this vulnerability in posts/videowhisper/rlogout.php, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...