Videowhisper: >> Video Presentation >> 3.25 Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin before 3.31 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) room_name parameter to c_login.php or (2) room parameter to index.php in vp/.
CVSS Score
4.3
EPSS Score
0.002
Published
2014-07-02