Vulnerabilities > CVE-2021-24512 - Unspecified vulnerability in Videowhisper Video Posts Webcam Recorder 1.55.4

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

videowhisper

NVD

Published: 2021-08-16

Updated: 2024-11-21

Summary

The Video Posts Webcam Recorder WordPress plugin before 3.2.4 has an authenticated reflected cross site scripting (XSS) vulnerability in one of the administrative functions for handling deletion of videos.

Vulnerable Configurations

Part	Description	Count
Application	Videowhisper Videowhisper Video Posts Webcam Recorder - Videowhisper Video Posts Webcam Recorder 1.55.4	2

References

https://wpscan.com/vulnerability/458a576e-a7ed-4758-a80c-cd08c370aaf4
https://wpscan.com/vulnerability/458a576e-a7ed-4758-a80c-cd08c370aaf4