CVE-2014-1908
NONE EPSS 93.5%
Published Dec 29, 201411y ago · Modified Jun 17, 20262w ago
Published Dec 29, 2014 11y ago
Last Modified Jun 17, 2026 2w ago
Description
The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.
Threat Intelligence
EPSS Exploit Probability
93.5% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| videowhisper | videowhisper_live_streaming_integration | * | ≤4.27.4 |
References 1
- htbridge.com https://www.htbridge.com/advisory/HTB23199
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.