cleantalk
Vulnerabilities and Security Researches

Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP, CVE-2026-24937

CVE, Research URL

CVE-2026-24937

Home page URL

Security reports for Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP

Application

Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP

Published on
May 26, 2026
Research Description
Improper Control of Generation of Code ('Code Injection') vulnerability in VideoWhisper.Com Broadcast Live Video allows Code Injection. This issue affects Broadcast Live Video: from n/a before 7.1.3.
Affected versions
max 7.1.3.
Status
vulnerable
Previous vulnerability researches
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7129) , Sep 15, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7877) , Oct 17, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2024-7876) , Oct 17, 2024
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2026-3658) , Apr 13, 2026
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2026-3045) , Apr 13, 2026
New vulnerability
LiteSpeed Cache (CVE-2026-3375) , May 28, 2026
WP Search Analytics (CVE-2026-27357) , May 28, 2026
Sheets to WP Table Live Sync – WordPress Table Plugin with Google Sheets Integration (CVE-2026-24582) , May 28, 2026
MasterStudy LMS WordPress Plugin – for Online Courses and Education (CVE-2026-42730) , May 28, 2026
cformsII (CVE-2026-39436) , May 28, 2026