RSS   Vulnerabilities for 'Fv flowplayer video player'   RSS

2019-08-15
 
CVE-2019-14800

CWE-200
 

 
The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows guests to obtain the email subscription list in CSV format via the wp-admin/admin-post.php?page=fvplayer&fv-email-export=1 URI.

 
2019-08-09
 
CVE-2019-14801

CWE-89
 

 
The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows email subscription SQL injection.

 
 
CVE-2019-14799

CWE-79
 

 
The FV Flowplayer Video Player plugin before 7.3.14.727 for WordPress allows email subscription XSS.

 
2019-07-17
 
CVE-2019-13573

CWE-89
 

 
A SQL injection vulnerability exists in the FolioVision FV Flowplayer Video Player plugin before 7.3.19.727 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system.

 

 >>> Vendor: Foliovision 3 Products
Fv wordpress flowplayer plugin
Foliopress wysiwyg
Fv flowplayer video player


Copyright 2019, cxsecurity.com

 

Back to Top