CVE-2011-4568

NONE EPSS 77.6%
Published Nov 29, 201114y ago · Modified Jun 16, 20262w ago
Find Similar
Published Nov 29, 2011 14y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in view/frontend-head.php in the Flowplayer plugin before 1.2.12 for WordPress allows remote attackers to inject arbitrary web script or HTML via the URI.

Threat Intelligence

EPSS Exploit Probability
77.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 27

VendorProductVersionRange
foliovisionfv_wordpress_flowplayer_plugin* ≤1.12.11
foliovisionfv_wordpress_flowplayer_plugin0.9.12any
foliovisionfv_wordpress_flowplayer_plugin0.9.13any
foliovisionfv_wordpress_flowplayer_plugin0.9.14any
foliovisionfv_wordpress_flowplayer_plugin0.9.15any
foliovisionfv_wordpress_flowplayer_plugin0.9.16any
foliovisionfv_wordpress_flowplayer_plugin0.9.18any
foliovisionfv_wordpress_flowplayer_plugin1.0any
foliovisionfv_wordpress_flowplayer_plugin1.0.1any
foliovisionfv_wordpress_flowplayer_plugin1.0.2any
foliovisionfv_wordpress_flowplayer_plugin1.0.3any
foliovisionfv_wordpress_flowplayer_plugin1.0.4any
foliovisionfv_wordpress_flowplayer_plugin1.0.5any
foliovisionfv_wordpress_flowplayer_plugin1.0.6any
foliovisionfv_wordpress_flowplayer_plugin1.1.0any
foliovisionfv_wordpress_flowplayer_plugin1.2.0any
foliovisionfv_wordpress_flowplayer_plugin1.2.1any
foliovisionfv_wordpress_flowplayer_plugin1.2.2any
foliovisionfv_wordpress_flowplayer_plugin1.2.3any
foliovisionfv_wordpress_flowplayer_plugin1.2.4any
foliovisionfv_wordpress_flowplayer_plugin1.2.5any
foliovisionfv_wordpress_flowplayer_plugin1.2.6any
foliovisionfv_wordpress_flowplayer_plugin1.2.7any
foliovisionfv_wordpress_flowplayer_plugin1.2.8any
foliovisionfv_wordpress_flowplayer_plugin1.2.9any
foliovisionfv_wordpress_flowplayer_plugin1.2.10any
wordpresswordpress*any

References 4

  • plugins.trac.wordpress.org http://plugins.trac.wordpress.org/changeset?reponame=&new=413607%40fv-wordpress-flowplayer&old=409594%40fv-wordpress-flowplayer
  • secunia.com http://secunia.com/advisories/46346
    Vendor Advisory
  • wordpress.org http://wordpress.org/extend/plugins/fv-wordpress-flowplayer/changelog/
  • securityfocus.com http://www.securityfocus.com/bid/50008

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.