64 matches found
CVE-2018-0642
Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-0642
Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2018-0642
The CVE-2018-0642 entry describes a Cross-Site Scripting (XSS) vulnerability in the WordPress FV Flowplayer Video Player plugin, affected versions 6.1.2 through 6.6.4. The underlying issue is an XSS flaw that could allow an attacker to inject arbitrary script or HTML, with vectors and impact desc...
JVN#70246549: WordPress plugin "FV Flowplayer Video Player" vulnerable to cross-site scripting
The WordPress plugin "FV Flowplayer Video Player" provided by Foliovision contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Update the plugin Update the plugin according to the information provided by the developer...