65 matches found
CVE-2024-32078
CVE-2024-32078 involves the FV Flowplayer Video Player WordPress plugin. The issue is an authenticated open redirect in FV Flowplayer Video Player versions affected up to 7.5.44.7212, enabling an attacker with Contributor+ access to redirect users to an arbitrary site. The CVE entry notes a patch...
CVE-2024-32955
Server-Side Request Forgery SSRF vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer Video Player: from n/a through 7.5.43.7212...
CVE-2024-32955
CVE-2024-32955 is a Server-Side Request Forgery (SSRF) in FV Flowplayer Video Player for WordPress. Affected: FV Flowplayer Video Player plugin versions up to 7.5.43.7212. Impact and exploit details are not provided beyond SSRF. Refs indicate the issue is patched in the FV Flowplayer entry (Patch...
CVE-2024-22299
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Reflected XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...
CVE-2024-22299
CVE-2024-22299 describes a Reflected XSS in FV Flowplayer Video Player for WordPress, affecting FV Flowplayer Video Player: from n/a through 7.5.41.7212. Affected software is FV Flowplayer WordPress plugin; CVSS 3.1/3.1 base score 7.1 (High). Attack vector: Network; Impact: confidentiality, integ...
CVE-2024-29122
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Stored XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...
CVE-2024-29122
CVE-2024-29122 is a Stored XSS in FV Flowplayer Video Player for WordPress. Affected: FV Flowplayer Video Player versions from n/a up to 7.5.41.7212. Root cause: Improper Neutralization of Input During Web Page Generation (Cross-site Scripting). This CVE description is corroborated by Red Hat’s a...
CVE-2023-30499
Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...
CVE-2023-30499
Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...
CVE-2023-30499
CVE-2023-30499 refers to an unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability in the FolioVision FV Flowplayer Video Player plugin for WordPress, affected versions
PT-2023-22735 · Foliovision · Fv Flowplayer Video Player
Name of the Vulnerable Software and Affected Versions: FolioVision FV Flowplayer Video Player plugin versions prior to 7.5.32.7212 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a...
CVE-2023-25066
Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...
CVE-2023-25066
Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...
CVE-2023-25066
CVE-2023-25066 is a Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin for WordPress, affected versions
CVE-2023-25066 WordPress FV Flowplayer Video Player Plugin <= 7.5.30.7212 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...
WordPress Plugin FolioVision FV Flowplayer 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2023-19911 · Foliovision · Fv Flowplayer Video Player
Name of the Vulnerable Software and Affected Versions: FolioVision FV Flowplayer Video Player plugin versions = 7.5.30.7212 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintende...
CVE-2019-13573
A SQL injection vulnerability exists in the FolioVision FV Flowplayer Video Player plugin before 7.3.19.727 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...