Videowhisper Videowhisper Live Streaming Integration — known CVE vulnerabilities
Every CVE whose affected-product data names Videowhisper Videowhisper Live Streaming Integration, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2014-1905 — CVSS 10.0 (critical): Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for…
CVE-2023-25699 — CVSS 9.0 (critical): Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in VideoWhisper.Com VideoWhisper…
CVE-2024-12504 — CVSS 6.4 (medium): The Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP plugin for WordPress is vulnerable to Stored Cross-Site…
CVE-2014-1907 — CVSS 6.4 (medium): Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote…
CVE-2014-2297 — CVSS 6.1 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin 4.29.6 for WordPress allow remote…
CVE-2014-1908 — CVSS 5.0 (medium): The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming…
CVE-2025-48255 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Cross…
CVE-2014-1906 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow…
CVE-2014-4569 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for…
CVE-2013-5714 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and…