GCVE - cpe:2.3:a:videowhisper:broadcast_live_video:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:videowhisper:broadcast_live_video:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Videowhisper (`3fa34018-7a89-5b29-a930-e9dcfd4be8ec`)
Product	Broadcast Live Video (`0c6829e3-6195-5227-a78f-394377e4bbb0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-48255`	vulnerable	2026-06-03 15:01:34.329908	WordPress Broadcast Live Video – Live Streaming : WebRTC, HLS, RTSP, RTMP plugin <= 6.2.4 - Cross Site Request Forgery (CSRF) Vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Cross Site Request Forgery.This issue affects Broadcast Live Video: from n/a through <= 6.2.4. Published: 2025-05-19T14:44:59.186Z Updated: 2026-04-28T16:12:53.905Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/videowhisper-live-streaming-integration/vulnerability/wordpress-broadcast-live-video-live-streaming-webrtc-hls-rtsp-rtmp-6-2-4-cross-site-request-forgery-csrf-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-26753`	vulnerable	2026-06-03 15:00:08.385729	WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerability HIGH (7.5) Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through <= 6.2. Published: 2025-02-25T14:17:50.490Z Updated: 2026-04-28T16:11:40.086Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/videowhisper-live-streaming-integration/vulnerability/wordpress-videowhisper-live-streaming-integration-plugin-6-2-arbitrary-file-download-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-26752`	vulnerable	2026-06-03 15:00:08.385353	WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Deletion vulnerability HIGH (8.6) Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in videowhisper Broadcast Live Video videowhisper-live-streaming-integration allows Path Traversal.This issue affects Broadcast Live Video: from n/a through <= 6.2. Published: 2025-02-25T14:17:50.298Z Updated: 2026-04-28T16:11:40.121Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/videowhisper-live-streaming-integration/vulnerability/wordpress-videowhisper-live-streaming-integration-plugin-6-2-arbitrary-file-deletion-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.