Known Vulnerabilities for JW Player For WordPress by IlGhera
Listed below are 10 of the newest known vulnerabilities associated with "JW Player For WordPress" by "IlGhera".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39614 json | Missing Authorization vulnerability in ilGhera JW Player for WordPress jw-player-7-for-wp allows Exploiting Incorrectly Confi... | Not Provided | 2026-04-08 | 2026-04-29 |
| CVE-2026-12135 json | The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'video_player' short... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2026-9125 json | The Presto Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link_url' parameter of the [pres... | Not Provided | 2026-06-12 | 2026-06-12 |
| CVE-2026-7556 json | The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the comment text in all ... | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-4141 json | The Quran Translations plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including,... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2025-32306 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in LambertGroup Radio Play... | Not Provided | 2025-05-16 | 2026-04-23 |
| CVE-2025-28955 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in FWDesign Easy Video Player Wo... | Not Provided | 2025-07-16 | 2026-04-23 |
| CVE-2025-3752 json | The Able Player, accessible HTML5 media player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘p... | Not Provided | 2025-04-25 | 2026-04-08 |
| CVE-2025-2579 json | The Lottie Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via File uploads in all versions up to, a... | Not Provided | 2025-04-24 | 2026-04-08 |
| CVE-2024-33931 json | Missing Authorization vulnerability in ilGhera JW Player for WordPress.This issue affects JW Player for WordPress: from n/a t... | Not Provided | 2024-05-03 | 2026-04-28 |