Dewplayer

Vulnerabilities 9Slug dewplayer-flash-mp3-playerLatest version 1.2Plugin page →

Minimum safe version

1.3

Update to 1.3 or later to address 4 fixable vulnerabilities

Latest available1.2 ⚠ 5 vulnerabilities have no fix
N/A
2023-08-01< 1.1

WordPress Dewplayer Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)

Patchstack
N/A
2023-08-01< 1.3

WordPress Dewplayer Plugin <= 1.2 is vulnerable to Full Path Disclosure (FPD)

Patchstack
N/A Unfixed Closed
2013-12-23< 100

Dewplayer <= 1.2 and Advanced Dewplayer < 1.5 - Content Spoofing/Injection

Wordfence
N/A Unfixed
2014-12-23≤ 1.2

Dewplayer <= 1.2 - Cross-Site Scripting

Wordfence
N/A Unfixed Closed
≤ 1.2

Dewplayer &lt;= 1.2 - dewplayer.php Direct Request Path Disclosure Weakness

WPScan
N/A Unfixed Closed
≤ 2.2.2

Dewplayer - dewplayer-vinyl.swf xml Parameter XML File H&amp;ling XSS

WPScan
N/A Unfixed Closed
≤ 2.2.2

Dewplayer - dewplayer-vinyl-en.swf xml Parameter XML File H&amp;ling XSS

WPScan
N/A Closed
2014-08-01< 1.3

WordPress Dewplayer Plugin <= 1.2 - Full Path Disclosure

Patchstack
N/A Closed
2014-08-01< 1.2

WordPress Dewplayer Plugin - Cross Site Scripting

Patchstack