Vulnerability Description
The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_fv_player_user_video’ parameter saved via the 'save' function hooked via init, and the plugin is also vulnerable to Arbitrary Usermeta Update via the 'save' function in versions up to, and including, 7.5.37.7212 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page, and makes it possible to update the user metas arbitrarily, but the meta value can only be a string.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Foliovision | Fv Flowplayer Video Player | <= 7.5.37.7212 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/browser/fv-wordpress-flowplayer/tags/7.5.36.7Product
- https://plugins.trac.wordpress.org/changeset/2957322/fv-wordpress-flowplayer#filPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/c55ca7d4-6bc0-49c9-8ceThird Party Advisory
- https://plugins.trac.wordpress.org/browser/fv-wordpress-flowplayer/tags/7.5.36.7Product
- https://plugins.trac.wordpress.org/changeset/2957322/fv-wordpress-flowplayer#filPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/c55ca7d4-6bc0-49c9-8ceThird Party Advisory
FAQ
What is CVE-2023-4520?
CVE-2023-4520 is a vulnerability with a CVSS score of 5.4 (MEDIUM). The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_fv_player_user_video’ parameter saved via the 'save' function hooked via init, and the plugin...
How severe is CVE-2023-4520?
CVE-2023-4520 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-4520?
Check the references section above for vendor advisories and patch information. Affected products include: Foliovision Fv Flowplayer Video Player.