12 matches found
CVE-2024-12449 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.30 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisperplayerhtml' shortcode in all versions up to, and including, 2.6.30 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-12449
CVE-2024-12449 affects the Video Share VOD – Turnkey Video Site Builder Script WordPress plugin. It is a Stored XSS in the videowhisper_player_html shortcode present in all versions up to 2.6.30 due to insufficient input sanitization and output escaping on user-supplied attributes. Exploitation r...
PlayTube Information Disclosure Vulnerability
PlayTube is a PHP-based video sharing platform. An information disclosure vulnerability exists in PlayTube version 3.0.1. An attacker could exploit this vulnerability to cause information disclosure...
Lovecraft client suffers from dll hijacking vulnerability
Aiki is an online video site. A dll hijacking vulnerability exists in the AikiYi client, which can be exploited by an attacker to gain control of the server...
YYcms has a logic flaw vulnerability (CNVD-2020-58421)
YYCMS movie and television, rain rain CMS movie and television, is a fully automatic collection of video sites. YYcms there are logical flaws vulnerability, attackers can use the vulnerability without paying any fees to open VIP package year, time with their own definition...
How to pass the command injection vulnerability fix Yahoo subsidiary production servers-vulnerability warning-the black bar safety net
One, Foreword Time to get back to 5 May 20, the night before that, I spent several days time to study the Yahoo Messenger app, still can't figure out how it works, but annoying headache and neck pain and looking for me. So I decided to go for a walk, find a new target. Then I noticed a very...
Video Site Creator Script - SQL Injection Vulnerability
Exploit for php platform in category web applications Vulnerability: SQL Injection Date: 19.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: VideoZone - Video Site Creator Script Script Buy Now: http://www.scriptfolder.com/scriptfolder-videozone-video-site-creator/ Author: Ihsan...
Video Site Creator Script - SQL Injection
Vulnerability: SQL Injection Date: 19.01.2017 Vendor Homepage: http://www.scriptfolder.com/ Script Name: VideoZone - Video Site Creator Script Script Buy Now: http://www.scriptfolder.com/scriptfolder-videozone-video-site-creator/ Author: Ihsan Sencan Author Web: http://ihsan.net Mail :...
Adult Video Site Script Multiple Vulnerabilities
No description provided by source...
Researchers Uncover Interesting Browser-Based Botnet
Security researchers discovered an odd DDoS attack against several sites recently that relied on a persistent cross-site scripting vulnerability in a major video Web site and hijacked users’ browsers in order to flood the site with traffic. The attack on the unnamed site involved the use of...
Vulnerability in World Largest Video Site Turned Million of Visitors into DDoS Zombies
An application layer or 'layer 7' distributed denial of service DDoS attacks is one of the most complicated web attack that disguised to look like legitimate traffic but targets specific areas of a website, making it even more difficult to detect and mitigate. Just Yesterday Cloud-based security...
Adult Video Site Cross Site Request Forgery
======================================================================================== | Title : ADULT VIDEO SITE SCRIPT CSRF Chang Admin Password Exploit | Author : indoushka | Home : www.dz-blackhat.com | | Web Site : http://hotfile.com/dl/32750290/bcc0159/videoscript.rar.html | Tested on:...