N/A Unfixed Closed 2026-02-13≤ 0.0.1 Simple Plyr <= 0.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'poster' Shortcode Attribute WordfenceCVE