Lucene search
PRIOn knowledge basePRION:CVE-2015-9271HistoryOct 04, 2018 - 11:29 p.m.
Input validation
2018-10-0423:29:00
PRIOn knowledge base
www.prio-n.com
4
The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when βhtmlβ are the last four characters, as demonstrated by a .phtml file containing PHP code, a different vulnerability than CVE-2014-1905.
| CPE | Name | Operator | Version |
|---|---|---|---|
| video_conference | eq | 4.91.8 |
References
Related
cvelist
cvelist
CVE-2015-9271
2018-10-04 23:00:00
CVE-2014-1905
2014-12-29 20:00:00
nvd
nvd
CVE-2015-9271
2018-10-04 23:29:00
CVE-2014-1905
2014-12-29 20:59:00
cve
cve
CVE-2015-9271
2018-10-04 23:29:00
CVE-2014-1905
2014-12-29 20:59:00
wpvulndb
wpvulndb
VideoWhisper Video Conference Integration 4.91.8 - Remote File Upload
2015-03-31 00:00:00
VideoWhisper Live Streaming Integration 4.27.3 - Multiple Vulnerabilities
2014-08-01 00:00:00
zdt
zdt
Wordpress VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
seebug
seebug
WordPress VideoWhisper Live Streaming Integrationδ»»ζζδ»ΆδΈδΌ ζΌζ΄
2014-03-06 00:00:00
prion
prion
Unrestricted file upload
2014-12-29 20:59:00
checkpoint_advisories
checkpoint_advisories
patchstack
patchstack
WordPress VideoWhisper Plugin 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
openvas
openvas
WordPress VideoWhisper Live Streaming Integration Multiple Vulnerabilities
2014-04-01 00:00:00
exploitpack
exploitpack
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00
packetstorm
packetstorm
securityvulns
securityvulns
htbridge
htbridge
exploitdb
exploitdb
WordPress Plugin VideoWhisper 4.27.3 - Multiple Vulnerabilities
2014-02-28 00:00:00