FV Flowplayer Video Player — Vulnerabilities & Security Advisories 11

All 11 CVE vulnerabilities found in FV Flowplayer Video Player, with AI-generated Chinese analysis, references, and POCs.

Vendor: Foliovision

CVE ID	Title	CVSS	Severity	Paused
CVE-2024-6338	FV Player <= 7.5.46.7212 - Authenticated (Subscriber+) SQL Injection via exclude Parameter CWE-89	8.8	High	2024-07-19
CVE-2024-35631	WordPress FV Flowplayer Video Player plugin <= 7.5.45.7212 - Cross Site Scripting (XSS) vulnerability CWE-79	7.1	High	2024-06-03
CVE-2024-32078	WordPress FV Player plugin <= 7.5.44.7212 - Unvalidated Redirects and Forwards vulnerability CWE-601	4.1	Medium	2024-04-24
CVE-2024-32955	WordPress FV Flowplayer Video Player plugin <= 7.5.43.7212 - Server Side Request Forgery (SSRF) vulnerability CWE-918	4.9	Medium	2024-04-24
CVE-2024-22299	WordPress FV Player plugin <= 7.5.41.7212 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79	7.1	High	2024-03-27
CVE-2024-29122	WordPress FV Player plugin <= 7.5.41.7212 - Cross Site Scripting (XSS) vulnerability CWE-79	6.5	Medium	2024-03-19
CVE-2023-4520	FV Flowplayer Video Player <= 7.5.37.7212 - Insufficient Input Validation to Unauthenticated Stored Cross-Site Scripting and Arbitrary Usermeta Update CWE-79	5.4	Medium	2023-08-25
CVE-2023-30499	WordPress FV Flowplayer Video Player Plugin <= 7.5.32.7212 is vulnerable to Cross Site Scripting (XSS) CWE-79	7.1	High	2023-08-18
CVE-2023-25066	WordPress FV Flowplayer Video Player Plugin <= 7.5.30.7212 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	4.3	Medium	2023-02-14
CVE-2021-39350	FV Flowplayer Video Player <= 7.5.0.727 - 7.5.2.727 Reflected Cross-Site Scripting CWE-79	6.1	-	2021-10-06
CVE-2018-0642	FV Flowplayer Video Player 跨站脚本漏洞	6.1	-	2018-09-07

All 11 known CVE vulnerabilities affecting FV Flowplayer Video Player with full Chinese analysis, references, and POCs where available.

Support Us — Your donation helps us keep running

FV Flowplayer Video Player — Vulnerabilities & Security Advisories 11