First published: Tue Jul 01 2014(Updated: )
Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the room_name parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Videowhisper Videowhisper Live Streaming Integration | <=4.27 | |
Videowhisper Videowhisper Live Streaming Integration | =1.0.2 | |
Videowhisper Videowhisper Live Streaming Integration | =2.0 | |
Videowhisper Videowhisper Live Streaming Integration | =2.1 | |
Videowhisper Videowhisper Live Streaming Integration | =2.2 | |
Videowhisper Videowhisper Live Streaming Integration | =4.05 | |
Videowhisper Videowhisper Live Streaming Integration | =4.07 | |
Videowhisper Videowhisper Live Streaming Integration | =4.25 | |
Videowhisper Videowhisper Live Streaming Integration | =4.27.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.