cleantalk
Vulnerabilities and Security Researches

FV Flowplayer Video Player, CVE-2022-25613

CVE, Research URL

CVE-2022-25613

Home page URL

Security reports for FV Flowplayer Video Player

Application

FV Flowplayer Video Player

Published on
Apr 05, 2022
Research Description
Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in FV Flowplayer Video Player (WordPress plugin) versions <= 7.5.18.727 via &fv_wp_flowplayer_field_splash parameter.
Affected versions
max 6.0.3.4.
Status
vulnerable
Previous vulnerability researches
FV Flowplayer Video Player (CVE-2026-7556) , Jun 10, 2026
FV Flowplayer Video Player (CVE-2018-0642) , Jun 07, 2024
FV Flowplayer Video Player (CVE-2026-49773) , Jun 10, 2026
FV Flowplayer Video Player (CVE-2019-14800) , Jun 07, 2024
FV Flowplayer Video Player (CVE-2020-35748) , Jun 07, 2024
New vulnerability
JS Help Desk &#8211; Best Help Desk &amp; Support Plugin (CVE-2026-48886) , Jun 10, 2026
JS Help Desk &#8211; Best Help Desk &amp; Support Plugin (CVE-2026-48887) , Jun 10, 2026
WP Job Portal &#8211; A Complete Job Board (CVE-2026-48880) , Jun 10, 2026
MW WP Form (CVE-2026-48871) , Jun 10, 2026
WP Time Slots Booking Form (CVE-2026-48882) , Jun 10, 2026