Vulnerabilities in videowhisper

26 results
CVE-2022-27629Cross-site request forgery (CSRF) vulnerability in 'MicroPayments - Paid Author Subscriptions, Content, Downloads, Membership' versions prioEPSS 0.8%CVE-2025-26753HIGHWordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2025-22663HIGHWordPress Paid Videochat Turnkey Site plugin <= 7.2.12 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-26752HIGHWordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2025-31380CRITICALWordPress Paid Videochat Turnkey Site plugin <= 7.3.11 - Broken Authentication VulnerabilityEPSS 0.5%CVE-2024-49235HIGHWordPress Contact Forms, Live Support, CRM, Video Messages plugin <= 1.10.2 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-62959CRITICALWordPress Paid Videochat Turnkey Site plugin <= 7.3.23 - Remote Code Execution (RCE) vulnerabilityEPSS 0.4%CVE-2024-12696MEDIUMPicture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via videowhisper_picture_upload_guest ShortcodeEPSS 0.4%CVE-2025-8899HIGHPaid Videochat Turnkey Site – HTML5 PPV Live Webcams <= 7.3.20 - Authenticated (Author+) Privilege EscalationEPSS 0.4%CVE-2024-13392MEDIUMRate Star Review Vote – AJAX Reviews, Votes, Star Ratings <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-13393MEDIUMVideo Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-26583HIGHWordPress Video Share VOD plugin <= 2.7.9 - Reflected Cross-Site Scripting vulnerabilityEPSS 0.3%CVE-2025-26581HIGHWordPress Picture Gallery plugin <= 1.6.3 - CSRF to Stored XSS vulnerabilityEPSS 0.3%CVE-2025-26579HIGHWordPress MicroPayments Paid Membership plugin <= 3.2.4 - Reflected Cross-Site Scripting vulnerabilityEPSS 0.3%CVE-2023-52213HIGHWordPress Rate Star Review Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-13584MEDIUMPicture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.19 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-13727MEDIUMVideo Share VOD <= 2.7.11 - Authenticated (Editor+) Stored Cross-Site Scripting via Custom Field Meta ValuesEPSS 0.3%CVE-2024-13391MEDIUMMicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet <= 2.9.29 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-4301MEDIUMRate Star Review Vote <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Modification via 'rating_id' ParameterEPSS 0.3%CVE-2024-12449MEDIUMVideo Share VOD – Turnkey Video Site Builder Script <= 2.6.30 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%