Primary

Context

VideoWhisper Broadcast Live Video Code Injection Vulnerability Allowing Remote Code Execution

Vulnerability

Patched

A code injection vulnerability has been identified in the VideoWhisper Broadcast Live Video WordPress plugin, affecting versions prior to 7.1.3. This vulnerability allows for remote code execution on the affected website.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected website, potentially leading to unauthorized access and control over the site.

Remediation

Users of the VideoWhisper Broadcast Live Video WordPress plugin should update to version 7.1.3 or later. Patchstack users can enable auto-update for vulnerable plugins.

Added: May 26, 2026, 6:07 PM

Updated: May 26, 2026, 6:07 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.0

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.0

remediation

7.7

relevance

9.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

VideoWhisper Broadcast Live Video Code Injection Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

VideoWhisper.Com Broadcast Live Video

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating