← Back

Videowhisper

videowhisper

25 CVEs • 13 products

Products (13)

Click to collapse
Toggle
Videowhisper Live Streaming Integration
videowhisper_live_streaming_integration
10 CVEs
Live Streaming Integration Plugin
live_streaming_integration_plugin
2 CVEs
Video Posts Webcam Recorder
video_posts_webcam_recorder
2 CVEs
Video Presentation
video_presentation
2 CVEs
Micropayments
micropayments
2 CVEs
Picture Gallery
picture_gallery
2 CVEs
Php 2 Way Video Chat
php_2_way_video_chat
1 CVE
Videowhisper
videowhisper
1 CVE
Video Conference
video_conference
1 CVE
Video Comments Webcam Recorder
video_comments_webcam_recorder
1 CVE
Webcam
webcam
1 CVE
2way Videocalls And Random Chat
2way_videocalls_and_random_chat
1 CVE
Rate Star Review
rate_star_review
1 CVE

CVEs (25)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-2715
1Videowhisper
1Videowhisper
May 6, 2026
Apr 28, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote attackers to inject arbitrary web script or HTML via the (1) module o...Show more
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote attackers to inject arbitrary web script or HTML via the (1) module or (2) message parameter to index.php.Show less
CVE-2014-1907
1Videowhisper
2Live Streaming Integration Plugin
Videowhisper Live Streaming Integration
May 6, 2026
Mar 6, 2014
N/A· v4
N/A· v3
6.4 MEDIUM· v2
Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the s parameter to l...Show more
Multiple directory traversal vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the s parameter to ls/rtmp_login.php or (2) delete arbitrary files via a .. (dot dot) in the s parameter to ls/rtmp_logout.php.Show less
CVE-2014-1906
1Videowhisper
2Live Streaming Integration Plugin
Videowhisper Live Streaming Integration
May 6, 2026
Mar 6, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) m parameter...Show more
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) m parameter to lb_status.php; (2) msg parameter to vc_chatlog.php; n parameter to (3) channel.php, (4) htmlchat.php, (5) video.php, or (6) videotext.php; (7) message parameter to lb_logout.php; or ct parameter to (8) lb_status.php or (9) v_status.php in ls/.Show less
CVE-2013-5714
1Videowhisper
1Videowhisper Live Streaming Integration
Apr 29, 2026
Sep 9, 2013
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Multiple cross-site scripting (XSS) vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject arbitrary web script...Show more
Multiple cross-site scripting (XSS) vulnerabilities in ls/htmlchat.php in the VideoWhisper Live Streaming Integration plugin 4.25.3 and possibly earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) message parameter. NOTE: some of these details are obtained from third party information.Show less
CVE-2010-4971
1Videowhisper
1Php 2 Way Video Chat
Apr 29, 2026
Nov 2, 2011
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in VideoWhisper PHP 2 Way Video Chat component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the r parameter to index.php.