ThreatPress

WordPress Vulnerabilities Database

Back

WordPress VideoWhisper Live Streaming Integration Plugin <= 4.29.4 - Multiple Vulnerabilities

Product
VideoWhisper Live Streaming Integration
Description
The error-handling feature in ls/rtmp.inc.php, videowhisper_streaming.php or bp.php allows the attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.
Solution
Update the plugin.
Classification
Type Multi
References
CVE Mitre
CVE
Name CVE-2014-1908
Versions
Affected In <= 4.29.4
Fixed In 4.29.5
Disclosure date
2014-02-07
Credits
High-Tech Bridge SA