Update the WordPress FV Flowplayer Video Player plugin to the latest available version (at least 7.5.18.727).
Nguyen Anh Tien discovered and reported this SQL Injection vulnerability in WordPress FV Flowplayer Video Player Plugin. This could allow a malicious actor to directly interact with your database, including but not limited to stealing information. This vulnerability has been fixed in version 7.5.18.727.