Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.8 views

CVE-2023-25699

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in VideoWhisper.Com VideoWhisper Live Streaming Integration allows OS Command Injection.This issue affects VideoWhisper Live Streaming Integration: from n/a through 5.5.15...

9.8CVSS8.6AI score0.01289EPSS
Exploits0References1
NVD
NVD
added 2025/02/25 3:15 p.m.8 views

CVE-2025-26752

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through = 6.2...

8.6CVSS0.005EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/25 2:17 p.m.9 views

CVE-2025-26753 WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through = 6.2...

7.5CVSS8.6AI score0.00541EPSS
Exploits0References1
NVD
NVD
added 2024/04/03 1:15 p.m.13 views

CVE-2023-25699

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in VideoWhisper.Com VideoWhisper Live Streaming Integration allows OS Command Injection.This issue affects VideoWhisper Live Streaming Integration: from n/a through 5.5.15...

9.8CVSS9.3AI score0.01289EPSS
Exploits0References1
Prion
Prion
added 2014/12/29 8:59 p.m.22 views

Unrestricted file upload

Unrestricted file upload vulnerability in ls/vwsnapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, and then accessing the file via a direct request to a...

10CVSS8.1AI score0.1036EPSS
Exploits6References1Affected Software1
CVE
CVE
added 2014/03/06 3:0 p.m.67 views

CVE-2014-1906

CVE-2014-1906 concerns the VideoWhisper Live Streaming Integration plugin for WordPress. The vulnerability involves multiple cross-site scripting (XSS) flaws in the plugin prior to version 4.29.5, allowing remote attackers to inject arbitrary script or HTML through various parameters (lb_status.p...

4.3CVSS6AI score0.04546EPSS
Exploits6References3Affected Software2
Cvelist
Cvelist
added 2014/03/06 3:0 p.m.47 views

CVE-2014-1906

Multiple cross-site scripting XSS vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 m parameter to lbstatus.php; 2 msg parameter to vcchatlog.php; n parameter to 3 channel.php, ...

6.2AI score0.04546EPSS
Exploits6References3
Cvelist
Cvelist
added 2014/03/06 3:0 p.m.44 views

CVE-2014-1907

Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to 1 read arbitrary files via a .. dot dot in the s parameter to ls/rtmplogin.php or 2 delete arbitrary files via a .. dot dot in the s parameter t...

6.9AI score0.1093EPSS
Exploits6References3
seebug.org
seebug.org
added 2014/03/03 12:0 a.m.39 views

WordPress VideoWhisper Live Streaming Integration多个目录遍历漏洞

BUGTRAQ ID: 65877 CVECAN ID: CVE-2014-1907 WordPress VideoWhisper Live Streaming Integration软件可以将视频广播功能添加到WordPress站点,也可将实时视频流添加到博客页。 VideoWhisper Live Streaming Integration 4.27.3及其他版本没有有效过滤脚本"/wp-content/plugins/videowhisper-live-streaming-integration/ls/rtmplog in.php"内的"s" HTTP...

6.4CVSS6.4AI score0.1093EPSS
Exploits6
exploitpack
exploitpack
added 2014/02/28 12:0 a.m.54 views

WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities

WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities Advisory ID: HTB23199 Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor...

10CVSS0.1AI score0.1093EPSS
Exploits12
0day.today
0day.today
added 2014/02/28 12:0 a.m.101 views

Wordpress VideoWhisper 4.27.3 - Multiple Vulnerabilities

Exploit for php platform in category web applications Product: VideoWhisper Live Streaming Integration Vendor: VideoWhisper Vulnerable Versions: 4.27.3 and probably prior Tested Version: 4.27.3 Advisory Publication: February 6, 2014 without technical details Vendor Notification: February 6, 2014...

10CVSS0.1AI score0.1093EPSS
Exploits12
CVE
CVE
added 2013/09/09 5:0 p.m.50 views

CVE-2013-5714

The CVE-2013-5714 entry concerns the VideoWhisper Live Streaming Integration WordPress plugin (versions 4.25.3 and earlier) with XSS in ls/htmlchat.php. An attacker can inject arbitrary script via the name or message parameter, enabling remote XSS. Documented impact is client-side script executio...

4.3CVSS6.1AI score0.02044EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2013/09/09 5:0 p.m.33 views

CVE-2013-5714

Multiple cross-site scripting XSS vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 message parameter. NOTE: some of these details are...

6AI score0.02044EPSS
Exploits1References5
securityvulns
securityvulns
added 2013/09/09 12:0 a.m.90 views

Wordpress videowhisper-live-streaming-integration Plugin Xss vulnerabilities

The Wordpress videowhisper-live-streaming-integration Plugin suffers from a Cross-Site Scripting vulnerability. Iranian Exploit DataBase Forum http://iedb.ir/acc http://iedb.ir Exploit Title : Wordpress videowhisper-live-streaming-integration Plugin Xss vulnerabilities Author : Iranian Exploit...

Exploits0
Rows per page
Query Builder