cleantalk
Vulnerabilities and Security Researches

Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP, CVE-2026-24937

CVE, Research URL

CVE-2026-24937

Home page URL

Security reports for Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP

Application

Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP

Published on
May 26, 2026
Research Description
Improper Control of Generation of Code ('Code Injection') vulnerability in VideoWhisper.Com Broadcast Live Video allows Code Injection. This issue affects Broadcast Live Video: from n/a before 7.1.3.
Affected versions
max 7.1.3.
Status
vulnerable
Previous vulnerability researches
Centangle-Team (CVE-2025-12456) , Nov 11, 2025
Team 118GROUP Agent (CVE-2025-23512) , Jan 21, 2025
Luzuk Team (CVE-2024-51871) , Nov 12, 2024
OS Our Team (CVE-2024-52341) , Nov 12, 2024
Inpersttion For Theme (CVE-2025-8905) , Aug 16, 2025
New vulnerability
WP Search Analytics (CVE-2026-27357) , May 28, 2026
Sheets to WP Table Live Sync – WordPress Table Plugin with Google Sheets Integration (CVE-2026-24582) , May 28, 2026
MasterStudy LMS WordPress Plugin – for Online Courses and Education (CVE-2026-42730) , May 28, 2026
cformsII (CVE-2026-39436) , May 28, 2026
Broadcast Live Video – Live Streaming : HTML5, WebRTC, HLS, RTSP, RTMP (CVE-2026-24937) , May 28, 2026