Vulnerabilidades en Foliovision

19 resultados

CVE-2018-0642—Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary web script or HTEPSS 1.0%CVE-2022-25607MEDIUMWordPress FV Flowplayer Video Player plugin <= 7.5.15.727 - SQL Injection (SQLi) vulnerabilityEPSS 0.8%CVE-2022-25613MEDIUMWordPress FV Flowplayer Video Player plugin <= 7.5.18.727 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilityEPSS 0.5%CVE-2024-6338HIGHFV Player <= 7.5.46.7212 - Authenticated (Subscriber+) SQL Injection via exclude ParameterEPSS 0.5%CVE-2023-4520MEDIUMFV Flowplayer Video Player <= 7.5.37.7212 - Insufficient Input Validation to Unauthenticated Stored Cross-Site Scripting and Arbitrary Usermeta UpdateEPSS 0.5%CVE-2024-5020MEDIUMMultiple Plugins <= (Various Versions) - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox JavaScript LibraryEPSS 0.4%CVE-2023-30499HIGHWordPress FV Flowplayer Video Player Plugin <= 7.5.32.7212 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2025-24613MEDIUMWordPress FV Thoughtful Comments plugin <= 0.3.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-32078MEDIUMWordPress FV Player plugin <= 7.5.44.7212 - Unvalidated Redirects and Forwards vulnerabilityEPSS 0.3%CVE-2023-25066MEDIUMWordPress FV Flowplayer Video Player Plugin <= 7.5.30.7212 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-35631HIGHWordPress FV Flowplayer Video Player plugin <= 7.5.45.7212 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-32955MEDIUMWordPress FV Flowplayer Video Player plugin <= 7.5.43.7212 - Server Side Request Forgery (SSRF) vulnerabilityEPSS 0.3%CVE-2024-56032HIGHWordPress FV Descriptions plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2026-7556HIGHFV Flowplayer Video Player <= 7.5.49.7212 - Unauthenticated Stored Cross-Site Scripting via Comment TextEPSS 0.2%CVE-2025-68579MEDIUMWordPress FV Simpler SEO plugin <= 1.9.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-22628HIGHWordPress Filled In Plugin <= 1.9.2 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2026-49773MEDIUMWordPress FV Flowplayer Video Player plugin < 7.5.51.7212 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2025-32610HIGHWordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerabilityEPSS 0.2%CVE-2025-66102HIGHWordPress FV Antispam plugin <= 2.7 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.1%