Critical Authenticated SQL Injection Vulnerability in FV Flowplayer Video Player WordPress Plugin (<= 7.5.15.727)

CVE-2022-25607 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Authenticated (author or higher user role) SQL Injection (SQLi) vulnerability discovered in FV Flowplayer Video Player WordPress plugin (versions <= 7.5.15.727).

Learn more about our Wordpress Pen Testing.