Lucene search
K

65 matches found

CVE
CVE
added 2024/04/24 3:40 p.m.66 views

CVE-2024-32078

CVE-2024-32078 involves the FV Flowplayer Video Player WordPress plugin. The issue is an authenticated open redirect in FV Flowplayer Video Player versions affected up to 7.5.44.7212, enabling an attacker with Contributor+ access to redirect users to an arbitrary site. The CVE entry notes a patch...

4.1CVSS5.1AI score0.00337EPSS
Exploits0References1
NVD
NVD
added 2024/04/24 7:15 a.m.14 views

CVE-2024-32955

Server-Side Request Forgery SSRF vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer Video Player: from n/a through 7.5.43.7212...

4.9CVSS5.2AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 7:5 a.m.75 views

CVE-2024-32955

CVE-2024-32955 is a Server-Side Request Forgery (SSRF) in FV Flowplayer Video Player for WordPress. Affected: FV Flowplayer Video Player plugin versions up to 7.5.43.7212. Impact and exploit details are not provided beyond SSRF. Refs indicate the issue is patched in the FV Flowplayer entry (Patch...

4.9CVSS5.1AI score0.00254EPSS
Exploits0References1
NVD
NVD
added 2024/03/27 6:15 a.m.21 views

CVE-2024-22299

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Reflected XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...

7.1CVSS7AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2024/03/27 5:59 a.m.54 views

CVE-2024-22299

CVE-2024-22299 describes a Reflected XSS in FV Flowplayer Video Player for WordPress, affecting FV Flowplayer Video Player: from n/a through 7.5.41.7212. Affected software is FV Flowplayer WordPress plugin; CVSS 3.1/3.1 base score 7.1 (High). Attack vector: Network; Impact: confidentiality, integ...

7.1CVSS8.6AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2024/03/19 3:15 p.m.20 views

CVE-2024-29122

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Stored XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...

6.5CVSS6.5AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2024/03/19 2:46 p.m.69 views

CVE-2024-29122

CVE-2024-29122 is a Stored XSS in FV Flowplayer Video Player for WordPress. Affected: FV Flowplayer Video Player versions from n/a up to 7.5.41.7212. Root cause: Improper Neutralization of Input During Web Page Generation (Cross-site Scripting). This CVE description is corroborated by Red Hat’s a...

6.5CVSS8.6AI score0.0034EPSS
Exploits0References1
NVD
NVD
added 2023/08/18 3:15 p.m.18 views

CVE-2023-30499

Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...

7.1CVSS6.2AI score0.00396EPSS
Exploits0References1
OSV
OSV
added 2023/08/18 3:15 p.m.2 views

CVE-2023-30499

Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...

6.1CVSS7.3AI score0.00396EPSS
Exploits0References1
Prion
Prion
added 2023/08/18 3:15 p.m.14 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.32.7212 versions...

5.8CVSS6AI score0.00396EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/18 2:41 p.m.37 views

CVE-2023-30499

CVE-2023-30499 refers to an unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability in the FolioVision FV Flowplayer Video Player plugin for WordPress, affected versions

7.1CVSS6AI score0.00396EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/18 12:0 a.m.5 views

PT-2023-22735 · Foliovision · Fv Flowplayer Video Player

Name of the Vulnerable Software and Affected Versions: FolioVision FV Flowplayer Video Player plugin versions prior to 7.5.32.7212 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a...

7.1CVSS6.3AI score0.00396EPSS
Exploits0References3
OSV
OSV
added 2023/02/14 6:15 a.m.3 views

CVE-2023-25066

Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...

8.8CVSS7.3AI score0.00271EPSS
Exploits0References1
NVD
NVD
added 2023/02/14 6:15 a.m.20 views

CVE-2023-25066

Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...

8.8CVSS5.8AI score0.00271EPSS
Exploits0References1
Prion
Prion
added 2023/02/14 6:15 a.m.18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...

6.8CVSS8.7AI score0.00271EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/02/14 5:32 a.m.47 views

CVE-2023-25066

CVE-2023-25066 is a Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin for WordPress, affected versions

8.8CVSS6.5AI score0.00271EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/14 5:32 a.m.11 views

CVE-2023-25066 WordPress FV Flowplayer Video Player Plugin <= 7.5.30.7212 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...

4.3CVSS8.8AI score0.00271EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/14 12:0 a.m.6 views

WordPress Plugin FolioVision FV Flowplayer 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS8AI score0.00271EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/14 12:0 a.m.10 views

PT-2023-19911 · Foliovision · Fv Flowplayer Video Player

Name of the Vulnerable Software and Affected Versions: FolioVision FV Flowplayer Video Player plugin versions = 7.5.30.7212 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintende...

8.8CVSS8.4AI score0.00271EPSS
Exploits0References3
NVD
NVD
added 2019/07/17 4:15 p.m.21 views

CVE-2019-13573

A SQL injection vulnerability exists in the FolioVision FV Flowplayer Video Player plugin before 7.3.19.727 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

10CVSS9.9AI score0.04371EPSS
Exploits0References4
Rows per page
Query Builder