WordPress Plugin Vulnerabilities

Flash Player Widget - dewplayer.swf Content Spoofing

Description

The flash-player-widget WordPress plugin was affected by a dewplayer.swf Content Spoofing security vulnerability.

Affects Plugins

Plugin icon
flash-player-widget
No known fix

References

URL
https://www.openwall.com/lists/oss-security/2013/12/30/5

Miscellaneous

Verified
No
WPVDB ID
0d2592ef-844a-41ed-9511-eeb9ddd4b98a

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2014-09-21
Title
MailPoet Newsletters 2.6.7 - helpers/back.php page Parameter Unspecified Issue
Published
2018-04-09
Title
Contact Form 7 to Database Extension 2.10.32 - CSV Injection
Published
2014-08-01
Title
WordPress 3.4 - 3.5.1 DoS in class-phpass.php
Published
2024-11-27
Title
Wallet for WooCommerce < 1.5.7 - Subscriber+ Funds Creation
Published
2025-10-14
Title
Orion SMS OTP Verification < 2.0.0 - Authentication Bypass via Account Takeover