Known Vulnerabilities for products from FolioVision
Listed below are 14 of the newest known vulnerabilities associated with the vendor "FolioVision".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-32610 json | Not Provided | 2025-04-09 | 2026-04-01 | |
| CVE-2025-24613 json | Not Provided | 2025-01-24 | 2026-04-01 | |
| CVE-2025-22628 json | Not Provided | 2025-03-27 | 2026-04-01 | |
| CVE-2024-56032 json | Not Provided | 2025-01-02 | 2026-04-01 | |
| CVE-2023-30499 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.32.7212 v... | 6.1 - MEDIUM | 2023-08-18 | 2023-08-22 |
| CVE-2023-25066 json | Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.30.7212 versions. | 8.8 - HIGH | 2023-02-14 | 2023-11-07 |
| CVE-2023-4520 json | The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_fv_player_user_v... | Not Provided | 2023-08-25 | 2026-04-08 |
| CVE-2022-25613 json | Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in FV Flowplayer Video Player (WordPress plugin) versions <... | 5.4 - MEDIUM | 2022-04-04 | 2022-04-11 |
| CVE-2022-25607 json | Authenticated (author or higher user role) SQL Injection (SQLi) vulnerability discovered in FV Flowplayer Video Player WordPr... | 7.2 - HIGH | 2022-03-18 | 2022-03-25 |
| CVE-2021-39350 json | The FV Flowplayer Video Player WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the player_id parameter f... | 6.1 - MEDIUM | 2021-10-06 | 2021-10-14 |
| CVE-2020-35748 json | Cross-site scripting (XSS) vulnerability in models/list-table.php in the FV Flowplayer Video Player plugin before 7.4.37.727 ... | 5.4 - MEDIUM | 2021-01-15 | 2021-01-21 |
| CVE-2019-14801 json | The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows email subscription SQL injection. | 9.8 - CRITICAL | 2019-08-09 | 2019-08-14 |
| CVE-2019-14800 json | The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows guests to obtain the email subscription list in ... | 5.3 - MEDIUM | 2019-08-15 | 2019-08-21 |
| CVE-2019-14799 json | The FV Flowplayer Video Player plugin before 7.3.14.727 for WordPress allows email subscription XSS. | 6.1 - MEDIUM | 2019-08-09 | 2023-02-24 |
| CVE-2019-13573 json | A SQL injection vulnerability exists in the FolioVision FV Flowplayer Video Player plugin before 7.3.19.727 for WordPress. Su... | 9.8 - CRITICAL | 2019-07-17 | 2023-03-01 |
| CVE-2018-0642 json | Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary w... | 6.1 - MEDIUM | 2018-09-07 | 2018-11-13 |
| CVE-2014-1232 json | Cross-site scripting (XSS) vulnerability in the Foliopress WYSIWYG plugin before 2.6.8.5 for WordPress allows remote attacker... | 4.3 - MEDIUM | 2014-01-08 | 2017-08-29 |
| CVE-2011-4568 json | Cross-site scripting (XSS) vulnerability in view/frontend-head.php in the Flowplayer plugin before 1.2.12 for WordPress allow... | 4.3 - MEDIUM | 2011-11-29 | 2011-11-30 |
Known software with vulnerabilities from FolioVision
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Foliovision | Foliopress Wysiwyg | 2.6.8 |
| Application | Foliovision | Fv Flowplayer Video Player | 0.9.12 |