[MEDIUM] Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2 (see CVE-2013-1967)

PKSA-5t3j-z4zj-5tr3 CVE-2016-4567 GHSA-277w-qpxr-2549

Affected version: >=2.14.2,<2.21.1

Reported by:
FriendsOfPHP/security-advisories, GitHub