Skip to main content
CVE-2014-1905 CRITICAL POC THREAT Emergency

Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to execute arbitrary PHP code. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 18.0%.

Command Injection WordPress PHP File Upload Videowhisper Live Streaming Integration
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
18.0%
Threat
4.0

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy