videowhisper
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting videowhisper.
- CVE-2026-4301Rate Star Review Vote <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Modification via 'rating_id' Parameter4.3
- CVE-2025-8899Paid Videochat Turnkey Site – HTML5 PPV Live Webcams <= 7.3.20 - Authenticated (Author+) Privilege Escalation8.8
- CVE-2025-13727Video Share VOD <= 2.7.11 - Authenticated (Editor+) Stored Cross-Site Scripting via Custom Field Meta Values4.4
- CVE-2025-62959WordPress Paid Videochat Turnkey Site plugin <= 7.3.23 - Remote Code Execution (RCE) vulnerability9.1
- CVE-2025-7812Video Share VOD – Turnkey Video Site Builder Script <= 2.7.6 - Cross-Site Request Forgery to Command Injection8.8
- CVE-2025-5937MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet <= 3.2.0 - Cross-Site Request Forgery to Settings Reset4.3
- CVE-2025-48255WordPress Broadcast Live Video – Live Streaming : WebRTC, HLS, RTSP, RTMP plugin <= 6.2.4 - Cross Site Request Forgery (CSRF) Vulnerability4.3
- CVE-2025-31380WordPress Paid Videochat Turnkey Site plugin <= 7.3.11 - Broken Authentication Vulnerability9.8
- CVE-2025-31075WordPress MicroPayments plugin <= 2.9.29 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-26583WordPress Video Share VOD plugin <= 2.7.9 - Reflected Cross-Site Scripting vulnerability7.1
- CVE-2025-26581WordPress Picture Gallery plugin <= 1.6.3 - CSRF to Stored XSS vulnerability7.1
- CVE-2025-26579WordPress MicroPayments Paid Membership plugin <= 3.2.4 - Reflected Cross-Site Scripting vulnerability7.1
- CVE-2025-26753WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerability7.5
- CVE-2025-26752WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Deletion vulnerability8.6
- CVE-2025-22663WordPress Paid Videochat Turnkey Site plugin <= 7.2.12 - Arbitrary File Deletion vulnerability8.6