CVE-2026-49773

MEDIUM6.5JSON export Create alert

Description

Subscriber Cross Site Scripting (XSS) in FV Flowplayer Video Player < 7.5.51.7212 versions.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

Low

Affected products

foliovision / FV Flowplayer Video Playern/a – 7.5.51.7212

References

MISChttps://patchstack.com/database/wordpress/plugin/fv-wordpress-flowplayer/vulnerability/wordpress-fv-flowplayer-video-player-plugin-7-5-51-7212-cross-site-scripting-xss-vulnerability?_s_id=cve