Title: security vulnerability
Last modified: June 6, 2026

---

# security vulnerability

 *  [pullober](https://wordpress.org/support/users/pullober/)
 * (@pullober)
 * [1 day, 19 hours ago](https://wordpress.org/support/topic/security-vulnerability-222/)
 * [https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/playerjs/playerjs-224-authenticated-contributor-stored-cross-site-scripting](https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/playerjs/playerjs-224-authenticated-contributor-stored-cross-site-scripting)
 * is there a patch planned?
 * i like the player a lot, would be nice to give the code some love again!

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fsecurity-vulnerability-222%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/playerjs/assets/icon-256x256.png?rev=3563603)
 * [PlayerJS - Free Custom HTML5 Video and Audio Player Builder](https://wordpress.org/plugins/playerjs/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/playerjs/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/playerjs/)
 * [Active Topics](https://wordpress.org/support/plugin/playerjs/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/playerjs/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/playerjs/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [pullober](https://wordpress.org/support/users/pullober/)
 * Last activity: [1 day, 19 hours ago](https://wordpress.org/support/topic/security-vulnerability-222/)
 * Status: not resolved