| CVE-2026-2424 | Reward Video Ad for WordPress <= 1.6 - Authenticated (Administrator+) Stored Cross-Site Scripting via Admin Settings | applixir | Reward Video Ad for WordPress | Medium | 4.4 | 2026-03-21 03:26:42 | Deep Dive |
| CVE-2025-27004 | WordPress Famous - Responsive Image And Video Grid Gallery WordPress Plugin plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability | LambertGroup | Famous - Responsive Image And Video Grid Gallery WordPress Plugin | High | 7.1 | 2026-01-08 09:17:42 | Deep Dive |
| CVE-2025-62746 | WordPress Featured Video for WordPress – VideographyWP plugin <= 1.0.18 - Cross Site Scripting (XSS) vulnerability | CodeFlavors | Featured Video for WordPress – VideographyWP | Medium | 6.5 | 2025-12-30 16:14:00 | Deep Dive |
| CVE-2025-8071 | Mine CloudVod <= 2.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via audio Parameter | 995525477-1 | Mine CloudVod LMS | Medium | 6.4 | 2025-07-24 09:22:17 | Deep Dive |
| CVE-2025-28955 | WordPress Easy Video Player Wordpress & WooCommerce plugin <= 10.0 - Arbitrary File Download Vulnerability | FWDesign | Easy Video Player Wordpress & WooCommerce | High | 7.5 | 2025-07-16 11:28:13 | Deep Dive |
| CVE-2025-39409 | WordPress WordPress Video Robot - The Ultimate Video Importer plugin <= 1.20.0 - Reflected Cross Site Scripting (XSS) vulnerability | pressaholic | WordPress Video Robot - The Ultimate Video Importer | High | 7.1 | 2025-05-19 19:03:43 | Deep Dive |
| CVE-2024-10804 | Ultimate Video Player <= 10.0 - Unauthenticated Arbitrary File Download | FWDesign | Ultimate Video Player WordPress & WooCommerce Plugin | High | 7.5 | 2025-03-07 08:21:25 | Deep Dive |
| CVE-2024-11202 | Multiple Plugins <= (Various Versions) - Reflected Cross-Site Scripting via cminds_free_guide Shortcode | creativemindssolutions | CM Header and Footer – Add custom scripts and styles to your header and footer with ease | Medium | 6.1 | 2024-11-26 07:31:32 | Deep Dive |
| CVE-2024-52431 | WordPress WP Video Robot plugin <= 1.20.0 - SQL Injection vulnerability | Pressaholic | WordPress Video Robot - The Ultimate Video Importer | Critical | 9.3 | 2024-11-18 14:37:54 | Deep Dive |
| CVE-2024-9192 | WP Video Robot <= 1.20.0 - Authenticated (Subscriber+) Privilege Escalation via User Meta Update | pressaholic | WordPress Video Robot - The Ultimate Video Importer | High | 8.8 | 2024-11-16 03:20:45 | Deep Dive |
| CVE-2024-49231 | WordPress WordPress Video plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | cyclop | WordPress Video | Medium | 6.5 | 2024-10-18 09:52:22 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-35770 | WordPress Vimeography plugin <= 2.4.1 - Cross Site Request Forgery (CSRF) vulnerability | Dave Kiss | Vimeography: Vimeo Video Gallery WordPress Plugin | Medium | 4.3 | 2024-06-21 13:10:24 | Deep Dive |
| CVE-2024-3268 | YouTube Video Gallery by YouTube Showcase – Video Gallery Plugin for WordPress <= 3.3.6 - Missing Authorization to Arbitrary Post/Page Creation | emarket-design | Video Gallery – YouTube Gallery & Responsive Video Playlist | Medium | 5.3 | 2024-05-21 11:33:17 | Deep Dive |
| CVE-2024-2428 | The Ultimate Video Player For WordPress < 2.2.3 - Contributor+ Stored XSS | Unknown | The Ultimate Video Player For WordPress | - | - | 2024-04-10 05:00:03 | Deep Dive |
| CVE-2024-0825 | Vimeography: Vimeo Video Gallery WordPress Plugin <= 2.3.2 - Authenticated (Contributor+) PHP Object Injection | videogallery | Vimeography: Vimeo Video Gallery WordPress Plugin | High | 8.8 | 2024-03-05 01:56:02 | Deep Dive |
| CVE-2023-45069 | WordPress Video Gallery – YouTube Gallery Plugin <= 2.1.3 is vulnerable to SQL Injection | Video Gallery by Total-Soft | Video Gallery – Best WordPress YouTube Gallery Plugin | 超危 | - | 2023-11-06 08:42:03 | Deep Dive |
| CVE-2022-45823 | WordPress Video Contest WordPress Plugin Plugin <= 3.2 is vulnerable to Cross Site Request Forgery (CSRF) | GalleryPlugins | Video Contest WordPress Plugin | Medium | 4.3 | 2023-07-11 07:50:53 | Deep Dive |
| CVE-2023-0418 | Video Central for WordPress <= 1.3.0 - Contributor+ Stored XSS | Unknown | Video Central for WordPress | 中危 | - | 2023-04-24 18:31:00 | Deep Dive |
| CVE-2022-44590 | WordPress Simple Video Embedder plugin <= 2.2 - Auth. Stored Cross-Site Scripting (XSS) vulnerability | James Lao | Simple Video Embedder (WordPress plugin) | Medium | 5.4 | 2022-11-09 21:14:28 | Deep Dive |