Lucene search
MitreCVELIST:CVE-2015-9271HistoryOct 04, 2018 - 11:00 p.m.
CVE-2015-9271
2018-10-0423:00:00
mitre
www.cve.org
1
The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when βhtmlβ are the last four characters, as demonstrated by a .phtml file containing PHP code, a different vulnerability than CVE-2014-1905.
References
Related
prion
prion
Input validation
2018-10-04 23:29:00
Unrestricted file upload
2014-12-29 20:59:00
nvd
nvd
CVE-2015-9271
2018-10-04 23:29:00
CVE-2014-1905
2014-12-29 20:59:00
cve
cve
CVE-2015-9271
2018-10-04 23:29:00
CVE-2014-1905
2014-12-29 20:59:00
wpvulndb
wpvulndb
VideoWhisper Video Conference Integration 4.91.8 - Remote File Upload
2015-03-31 00:00:00
VideoWhisper Live Streaming Integration 4.27.3 - Multiple Vulnerabilities
2014-08-01 00:00:00
zdt
zdt
Wordpress VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
seebug
seebug
WordPress VideoWhisper Live Streaming Integrationδ»»ζζδ»ΆδΈδΌ ζΌζ΄
2014-03-06 00:00:00
cvelist
cvelist
CVE-2014-1905
2014-12-29 20:00:00
checkpoint_advisories
checkpoint_advisories
patchstack
patchstack
WordPress VideoWhisper Plugin 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
openvas
openvas
WordPress VideoWhisper Live Streaming Integration Multiple Vulnerabilities
2014-04-01 00:00:00
exploitpack
exploitpack
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
securityvulns
securityvulns
packetstorm
packetstorm
htbridge
htbridge
exploitdb
exploitdb
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00