WordPress securityInstantly fix and mitigate vulnerabilities Plugin auditingPaid auditing for WordPress vendors Managed VDPStart a security program for your plugins Bug BountyJoin the community and earn bounties Enterprise APIAt scale monitoring and vPatching for hosts Vulnerability databaseThe latest WordPress security intelligence

Login Start trial

MP3 jPlayer

N/A

Developer

N/A

Latest version

N/A

Installations

N/A

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Vulnerability history

1 present

9 fixed

0 Mitigation rules

Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
<= 2.7.3
Sep 1, 2022
Full Path Disclosure
<= 2.3.3
Aug 6, 2015
Local File Disclosure
<= 2.3
Mar 23, 2015
Local File Disclosure
<= 2.3
Mar 23, 2015
Cross Site Scripting
<= 1.8.7
Aug 1, 2014
Cross Site Scripting
<= 1.8.7
Aug 1, 2014
Cross Site Scripting
<= 1.8.3
Aug 1, 2014
Cross Site Scripting
<= 1.8.3
Aug 1, 2014
Cross Site Scripting
<= 1.8.3
Aug 1, 2014
Cross Site Scripting
<= 1.8.3
Aug 1, 2014

Vulnerability mitigation

Pricing
Application security (SCA)
RapidMitigate New
Threat Intelligence (API)
Documentation
VS Monarx
VS Imunify360
VS Wordfence
Log in

Code security

Managed VDP New
Active VDP directory
Security auditing
Compliance (CRA) New
Log in New

Bug bounty

Bug bounty
Leaderboard
Guidelines
Learn New
Report
Discord
Log in New

Use cases

Web developers
Webhosts New
Software vendors
WordPress
WooCommerce

Resources

Vulnerability database
Whitepaper 2025 New
Articles
Case studies New
Webinars New
Vulnerability statistics

Patchstack

About
Careers
Merch store
Media kit
LinkedIn
Facebook
X

© 2025 Patchstack

Terms & Conditions