RSS   Vulnerabilities for 'Video presentation'   RSS

2018-10-05
 
CVE-2015-9272

CWE-94
 

 
The videowhisper-video-presentation plugin 3.31.17 for WordPress allows remote attackers to execute arbitrary code because vp/vw_upload.php considers a file safe when "html" are the last four characters, as demonstrated by a .phtml file containing PHP code.

 
2014-07-02
 
CVE-2014-4570

 

 
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin before 3.31 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) room_name parameter to c_login.php or (2) room parameter to index.php in vp/.

 

 >>> Vendor: Videowhisper 10 Products
Webcam
Php 2 way video chat
Live streaming integration plugin
Videowhisper
Videowhisper live streaming integration
Video posts webcam recorder
Video presentation
Video conference
Video comments webcam recorder
2way videocalls and random chat


Copyright 2024, cxsecurity.com

 

Back to Top