64 matches found
CVE-2026-49773
Subscriber Cross Site Scripting XSS in FV Flowplayer Video Player 7.5.51.7212 versions...
PT-2026-49344
Name of the Vulnerable Software and Affected Versions FV Flowplayer Video Player versions prior to 7.5.51.7212 Description Cross Site Scripting XSS is possible for users with the Subscriber role. This issue allows an attacker to inject malicious scripts into web pages viewed by other users...
PT-2026-47635
Name of the Vulnerable Software and Affected Versions FV Flowplayer Video Player versions prior to 7.5.49.7213 Description The FV Flowplayer Video Player plugin for WordPress contains a Stored Cross-Site Scripting issue caused by insufficient input sanitization and output escaping of comment text...
CVE-2023-25066
Cross-Site Request Forgery CSRF vulnerability in FolioVision FV Flowplayer Video Player plugin = 7.5.30.7212 versions...
EUVD-2019-5931
Malware in sbrugna...
EUVD-2019-5028
Malware in sbrugna...
EUVD-2022-43313
Malicious code in bioql PyPI...
EUVD-2022-30267
Malicious code in bioql PyPI...
EUVD-2024-19860
Malicious code in bioql PyPI...
EUVD-2024-30717
Malicious code in bioql PyPI...
EUVD-2024-26160
Malicious code in bioql PyPI...
CVE-2024-29122
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Stored XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...
CVE-2024-32078
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer Video Player: from n/a through 7.5.44.7212...
CVE-2020-35748
Cross-site scripting XSS vulnerability in models/list-table.php in the FV Flowplayer Video Player plugin before 7.4.37.727 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the fvwpfvvideoplayersrc JSON field in the data parameter...
CVE-2024-22299
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Foliovision: Making the web work for you FV Flowplayer Video Player allows Reflected XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.41.7212...
CVE-2024-35631
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Foliovision FV Flowplayer Video Player allows Reflected XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.45.7212...
CVE-2024-35631 WordPress FV Flowplayer Video Player plugin <= 7.5.45.7212 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Foliovision FV Flowplayer Video Player allows Reflected XSS.This issue affects FV Flowplayer Video Player: from n/a through 7.5.45.7212...
CVE-2024-32078
CVE-2024-32078 involves the FV Flowplayer Video Player WordPress plugin. The issue is an authenticated open redirect in FV Flowplayer Video Player versions affected up to 7.5.44.7212, enabling an attacker with Contributor+ access to redirect users to an arbitrary site. The CVE entry notes a patch...
CVE-2024-32955 WordPress FV Flowplayer Video Player plugin <= 7.5.43.7212 - Server Side Request Forgery (SSRF) vulnerability
Server-Side Request Forgery SSRF vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer Video Player: from n/a through 7.5.43.7212...
WordPress FV Flowplayer Video Player plugin <= 7.5.43.7212 - Server Side Request Forgery (SSRF) vulnerability
Server Side Request Forgery SSRF vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin FV Flowplayer Video Player versions = 7.5.43.7212...