Cross site scripting vulnerability in JW Player SWF

Description

JW Player is the world's most popular embeddable media player. Multiple cross site scripting vulnerabilities were reported in older versions of the JW Player SWF that may allow an attacker to execute arbitrary Javascript code.

Remediation

Upgrade to the latest version of JW Player.

References