CVE-2018-0642

CVE-2018-0642

EPSS 1.0%

Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Foliovision · FV Flowplayer Video Player

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://jvn.jp/en/jp/JVN70246549/index.html https://wordpress.org/plugins/fv-wordpress-flowplayer/#developers