RSS   Vulnerabilities for 'Video conference'   RSS

2018-10-04
 
CVE-2015-9271

CWE-434
 

 
The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when "html" are the last four characters, as demonstrated by a .phtml file containing PHP code, a different vulnerability than CVE-2014-1905.

 

 >>> Vendor: Videowhisper 7 Products
Php 2 way video chat
Live streaming integration plugin
Videowhisper
Videowhisper live streaming integration
Video posts webcam recorder
Video presentation
Video conference


Copyright 2019, cxsecurity.com

 

Back to Top