Back WordPress VideoWhisper Live Streaming Integration Plugin <= 4.29.4 - Multiple Vulnerabilities Product VideoWhisper Live Streaming Integration Description The error-handling feature in ls/rtmp.inc.php, videowhisper_streaming.php or bp.php allows the attackers to obtain sensitive information via a direct request, which reveals the full path in an error message. Solution Update the plugin. Classification Type Multi References CVE Mitre CVE Name CVE-2014-1908 Versions Affected In <= 4.29.4 Fixed In 4.29.5 Disclosure date 2014-02-07 Credits High-Tech Bridge SA