Xibo Player

by Xibo Signage Ltdv4.407.2

Last updated Jun 8, 2026

Xibo for Windows Digital Signage Player, compatible with the Xibo Content Management System, and intended to be used for Digital Signage.

Visit homepage

Install with winget

$ winget install --id XiboSignage.XiboPlayer --exact --version 4.407.2

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for Xibo Player

Xibo Player uses MSI. The silent install switches are /quiet /norestart.

One-line silent install (x86)

msiexec.exe /i xibo-client-v4-R407.2-win32-x86.msi /quiet /norestart

See the full silent install reference for Xibo Player →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v4.407.2

Architecture	Type	Scope	Install	Download
x86	MSI	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

15 known CVEs via NVD

medium4.3Patched in wingetCVE-2026-31956affects before 4.4.1Apr 24, 2026
Xibo is an open source digital signage platform with a web content management system and Windows display player software. Prior to version 4.4.1, any authenticated user can manually construct a URL to preview campaigns/regions, and export saved reports belonging to other users....
Vendor advisory
medium4.9Patched in wingetCVE-2026-31955affects before 4.4.1Apr 24, 2026
Xibo is an open source digital signage platform with a web content management system and Windows display player software. An authenticated Server-Side Request Forgery (SSRF) vulnerability in versions prior to 4.4.1 allows users with DataSet permissions to make arbitrary HTTP req...
Vendor advisory
medium6.4Patched in wingetCVE-2026-31953affects before 4.4.1Apr 24, 2026
Xibo is an open source digital signage platform with a web content management system and Windows display player software. A stored Cross-Site Scripting (XSS) vulnerability in versions prior to 4.4.1 allows an authenticated user with notification creation permissions to inject ar...
Vendor advisory
high7.6Patched in wingetCVE-2026-31952affects before 4.4.1Apr 24, 2026
Xibo is an open source digital signage platform with a web content management system and Windows display player software. Versions 1.7 through 4.4.0 have an SQL injection vulnerability in the API routes inside the CMS responsible for Filtering DataSets. This allows an authentica...
Patch Vendor advisory
high7.2Patched in wingetCVE-2025-62369affects before 4.3.1Nov 4, 2025
Xibo is an open source digital signage platform with a web content management system (CMS). Versions 4.3.0 and below contain a Remote Code Execution vulnerability in the CMS Developer menu's Module Templating functionality, allowing authenticated users with "System -> Add/Edit c...
Patch
low3.5Patched in wingetCVE-2024-43413affects before 4.1.0Sep 3, 2024
Xibo is an open source digital signage platform with a web content management system (CMS). Prior to version 4.1.0, a cross-site scripting vulnerability in Xibo CMS allows authorized users to execute JavaScript via the DataSet functionality. Users can design a DataSet with a HTM...
Patch Vendor advisory
medium4.6Patched in wingetCVE-2024-43412affects before 4.1.0Sep 3, 2024
Xibo is an open source digital signage platform with a web content management system (CMS). Prior to version 4.1.0, a cross-site scripting vulnerability in Xibo CMS allows authorized users to execute arbitrary JavaScript via the file preview function. Users can upload HTML/CSS/J...
Patch Vendor advisory
medium6.5Patched in wingetCVE-2024-41804affects before 3.3.12, 4.0.14Jul 30, 2024
Xibo is a content management system (CMS). An SQL injection vulnerability was discovered in the API route inside the CMS responsible for Adding/Editing DataSet Column Formulas. This allows an authenticated user to to obtain and modify arbitrary data from the Xibo database by inj...
Patch Vendor advisory

Showing 8 of 15. Source: NVD, updated 2h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

BA connectedBrightSign
BrightSign.BAconnectedv1.85.0
BA connected allows users to link their digital signage authoring to a robust networking management solution
CloudShow LauncherBinary Fortress Software
BinaryFortress.CloudShowv6.8.2.0
Turn any screen into a digital sign in minutes with CloudShow.
BrightAuthorBrightSign
BrightSign.BrightAuthorv5.0.2.0
Interactively build BrightSign displays
ScreenCloud Playerscreencloud
ScreenCloud.ScreenCloudPlayerv3.12.0
Use Windows media players, signboards and interactive displays for your digital signage.
OptiSigns Digital SignageOptiSigns
OptiSigns.OptiSignsDigitalSignagev5.6.33
The Digital Signage Player for your OptiSigns device

More from Xibo Signage Ltd or browse signage.

Frequently asked questions

How do I install Xibo Player on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id XiboSignage.XiboPlayer --exact --version 4.407.2. winget downloads the installer from Xibo Signage Ltd and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Xibo Player silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id XiboSignage.XiboPlayer --exact 4.407.2 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for Xibo Player?

Xibo Player uses MSI. Run the downloaded installer with: msiexec.exe /i xibo-client-v4-R407.2-win32-x86.msi /quiet /norestart. The silent switches are /quiet /norestart.

How do I uninstall Xibo Player via winget?

Run: winget uninstall --id XiboSignage.XiboPlayer --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Xibo Player's Apps & Features entry.

Is Xibo Player free?

Xibo Player is distributed under AGPL-3.0. Refer to the publisher (https://xibosignage.com/downloads) for the full license terms - Wingetly itself does not charge for installation.

Does Xibo Player work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Xibo Player directly from the publisher.

How do I keep Xibo Player up to date?

Run winget upgrade --id XiboSignage.XiboPlayer --exact, or winget upgrade --all to update everything winget tracks. We index 7 versions of Xibo Player from microsoft/winget-pkgs.

Recent versions

4.407.2latest
4.406.3
4.405.3
3.307.0
3.305.1
2.258.1
1.8.14