Smartwpress Music Player For Elementor – Audio Player & Podcast Player

4 CVEs affecting Smartwpress Music Player For Elementor – Audio Player & Podcast Player. Latest disclosed: 2026-05-01. Critical: 0, High: 0.

Top CVEs affecting Smartwpress Music Player For Elementor – Audio Player & Podcast Player
CVESeverityScorePublishedSummary
CVE-2025-5340Medium6.42025-06-03The Music Player for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘album_buy_url’ parameter in all versions up to, and i…
CVE-2022-4974Medium6.32024-10-16The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to…
CVE-2024-13362Medium6.12026-05-01Multiple plugins and/or themes for WordPress are vulnerable to Reflected Cross-Site Scripting via the url parameter in various versions due to insufficient inp…
CVE-2024-10582Medium4.32024-11-15The Music Player for Elementor – Audio Player & Podcast Player plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabil…