The FV Flowplayer Video Player plugin for WordPress has a security vulnerability that could be used by attackers. It affects versions from 7.5.32.7212 and earlier. It is possible for attackers to insert malicious code into the website through the ‘id’ parameter if they can get a user to click on a link. This is because the plugin does not properly secure the input or output.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
