Lucene search
K

12 matches found

Vulnrichment
Vulnrichment
added 2024/12/18 3:22 a.m.11 views

CVE-2024-12449 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.30 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisperplayerhtml' shortcode in all versions up to, and including, 2.6.30 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS5.8AI score0.0027EPSS
Exploits0References2
CVE
CVE
added 2024/12/18 3:22 a.m.42 views

CVE-2024-12449

CVE-2024-12449 affects the Video Share VOD – Turnkey Video Site Builder Script WordPress plugin. It is a Stored XSS in the videowhisper_player_html shortcode present in all versions up to 2.6.30 due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation r...

6.4CVSS5.7AI score0.0027EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/01 12:0 a.m.3 views

PlayTube Information Disclosure Vulnerability

PlayTube is a PHP-based video sharing platform. An information disclosure vulnerability exists in PlayTube version 3.0.1. An attacker could exploit this vulnerability to cause information disclosure...

7.5CVSS6.1AI score0.0521EPSS
Exploits3References6
CNVD
CNVD
added 2021/01/06 12:0 a.m.2 views

Lovecraft client suffers from dll hijacking vulnerability

Aiki is an online video site. A dll hijacking vulnerability exists in the AikiYi client, which can be exploited by an attacker to gain control of the server...

7.3AI score
Exploits0
CNVD
CNVD
added 2020/10/10 12:0 a.m.1 views

YYcms has a logic flaw vulnerability (CNVD-2020-58421)

YYCMS movie and television, rain rain CMS movie and television, is a fully automatic collection of video sites. YYcms there are logical flaws vulnerability, attackers can use the vulnerability without paying any fees to open VIP package year, time with their own definition...

6.9AI score
Exploits0
myhack58
myhack58
added 2017/06/06 12:0 a.m.132 views

How to pass the command injection vulnerability fix Yahoo subsidiary production servers-vulnerability warning-the black bar safety net

One, Foreword Time to get back to 5 May 20, the night before that, I spent several days time to study the Yahoo Messenger app, still can't figure out how it works, but annoying headache and neck pain and looking for me. So I decided to go for a walk, find a new target. Then I noticed a very...

10CVSS7.7AI score0.97485EPSS
Exploits11
0day.today
0day.today
added 2017/01/20 12:0 a.m.15 views

Video Site Creator Script - SQL Injection Vulnerability

Exploit for php platform in category web applications Vulnerability: SQL Injection Date: 19.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: VideoZone - Video Site Creator Script Script Buy Now: http://www.scriptfolder.com/scriptfolder-videozone-video-site-creator/ Author: Ihsan...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/01/19 12:0 a.m.20 views

Video Site Creator Script - SQL Injection

Vulnerability: SQL Injection Date: 19.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: VideoZone - Video Site Creator Script Script Buy Now: http://www.scriptfolder.com/scriptfolder-videozone-video-site-creator/ Author: Ihsan Sencan Author Web: http://ihsan.net Mail :...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Adult Video Site Script Multiple Vulnerabilities

No description provided by source...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2014/04/04 10:42 a.m.9 views

Researchers Uncover Interesting Browser-Based Botnet

Security researchers discovered an odd DDoS attack against several sites recently that relied on a persistent cross-site scripting vulnerability in a major video Web site and hijacked users’ browsers in order to flood the site with traffic. The attack on the unnamed site involved the use of...

1.3AI score
Exploits0References2
The Hacker News
The Hacker News
added 2014/04/03 8:47 a.m.11 views

Vulnerability in World Largest Video Site Turned Million of Visitors into DDoS Zombies

An application layer or 'layer 7' distributed denial of service DDoS attacks is one of the most complicated web attack that disguised to look like legitimate traffic but targets specific areas of a website, making it even more difficult to detect and mitigate. Just Yesterday Cloud-based security...

6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2010/03/22 12:0 a.m.31 views

Adult Video Site Cross Site Request Forgery

======================================================================================== | Title : ADULT VIDEO SITE SCRIPT CSRF Chang Admin Password Exploit | Author : indoushka | Home : www.dz-blackhat.com | | Web Site : http://hotfile.com/dl/32750290/bcc0159/videoscript.rar.html | Tested on:...

0.5AI score
Exploits0
Rows per page
Query Builder