| CVE-2025-8899 | Paid Videochat Turnkey Site – HTML5 PPV Live Webcams <= 7.3.20 - Authenticated (Author+) Privilege Escalation | videowhisper | Paid Videochat Turnkey Site – HTML5 PPV Live Webcams | High | 8.8 | 2026-03-07 05:46:46 | Deep Dive |
| CVE-2025-13727 | Video Share VOD <= 2.7.11 - Authenticated (Editor+) Stored Cross-Site Scripting via Custom Field Meta Values | videowhisper | Video Share VOD – Turnkey Video Site Builder Script | Medium | 4.4 | 2026-02-18 09:25:52 | Deep Dive |
| CVE-2025-62959 | WordPress Paid Videochat Turnkey Site plugin <= 7.3.23 - Remote Code Execution (RCE) vulnerability | videowhisper | Paid Videochat Turnkey Site | - | - | 2025-10-27 01:34:12 | Deep Dive |
| CVE-2025-7812 | Video Share VOD – Turnkey Video Site Builder Script <= 2.7.6 - Cross-Site Request Forgery to Command Injection | videowhisper | Video Share VOD – Turnkey Video Site Builder Script | High | 8.8 | 2025-08-28 01:46:30 | Deep Dive |
| CVE-2025-5937 | MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet <= 3.2.0 - Cross-Site Request Forgery to Settings Reset | videowhisper | MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet | Medium | 4.3 | 2025-06-28 07:25:06 | Deep Dive |
| CVE-2025-48255 | WordPress Broadcast Live Video – Live Streaming : WebRTC, HLS, RTSP, RTMP plugin <= 6.2.4 - Cross Site Request Forgery (CSRF) Vulnerability | videowhisper | Broadcast Live Video | Medium | 4.3 | 2025-05-19 14:44:59 | Deep Dive |
| CVE-2025-31380 | WordPress Paid Videochat Turnkey Site plugin <= 7.3.11 - Broken Authentication Vulnerability | videowhisper | Paid Videochat Turnkey Site | Critical | 9.8 | 2025-04-17 15:47:51 | Deep Dive |
| CVE-2025-31075 | WordPress MicroPayments plugin <= 2.9.29 - Cross Site Scripting (XSS) vulnerability | videowhisper | MicroPayments | Medium | 6.5 | 2025-03-28 09:39:58 | Deep Dive |
| CVE-2025-26583 | WordPress Video Share VOD plugin <= 2.7.9 - Reflected Cross-Site Scripting vulnerability | videowhisper | Video Share VOD | High | 7.1 | 2025-03-26 14:24:21 | Deep Dive |
| CVE-2025-26581 | WordPress Picture Gallery plugin <= 1.6.3 - CSRF to Stored XSS vulnerability | videowhisper | Picture Gallery | High | 7.1 | 2025-03-26 14:24:21 | Deep Dive |
| CVE-2025-26579 | WordPress MicroPayments Paid Membership plugin <= 3.2.4 - Reflected Cross-Site Scripting vulnerability | videowhisper | MicroPayments | High | 7.1 | 2025-03-26 14:24:20 | Deep Dive |
| CVE-2025-26753 | WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Download vulnerability | videowhisper | Broadcast Live Video | High | 7.5 | 2025-02-25 14:17:50 | Deep Dive |
| CVE-2025-26752 | WordPress VideoWhisper Live Streaming Integration plugin <= 6.2 - Arbitrary File Deletion vulnerability | videowhisper | Broadcast Live Video | High | 8.6 | 2025-02-25 14:17:50 | Deep Dive |
| CVE-2025-22663 | WordPress Paid Videochat Turnkey Site plugin <= 7.2.12 - Arbitrary File Deletion vulnerability | videowhisper | Paid Videochat Turnkey Site | High | 8.6 | 2025-02-18 19:54:29 | Deep Dive |
| CVE-2024-12504 | Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP <= 6.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Broadcast Live Video – Live Streaming : WebRTC, HLS, RTSP, RTMP | Medium | 6.4 | 2025-01-23 11:13:28 | Deep Dive |
| CVE-2024-13584 | Picture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.19 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Picture Gallery – Frontend Image Uploads, AJAX Photo List | Medium | 6.4 | 2025-01-22 03:21:31 | Deep Dive |
| CVE-2024-13392 | Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings <= 1.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings | Medium | 6.4 | 2025-01-18 07:11:24 | Deep Dive |
| CVE-2024-13393 | Video Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Video Share VOD – Turnkey Video Site Builder Script | Medium | 6.4 | 2025-01-18 07:05:11 | Deep Dive |
| CVE-2024-12696 | Picture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via videowhisper_picture_upload_guest Shortcode | videowhisper | Picture Gallery – Frontend Image Uploads, AJAX Photo List | Medium | 6.4 | 2025-01-18 07:05:10 | Deep Dive |
| CVE-2024-13391 | MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet <= 2.9.29 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Wallet | Medium | 6.4 | 2025-01-18 07:05:06 | Deep Dive |