Does Playlist for Youtube have any unpatched vulnerabilities?

No. All known vulnerabilities in Playlist for Youtube have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Playlist for Youtube compatible with WordPress 6.9.4?

According to WordPress.org data, Playlist for Youtube 1.43 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

Is Playlist for Youtube compatible with PHP 5.6+?

Playlist for Youtube requires PHP 5.6 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Playlist for Youtube updated?

Playlist for Youtube was last updated on Dec 2, 2025. Frequent updates are generally a positive security signal.

What is Playlist for Youtube's security score?

Playlist for Youtube has a WP-Safety security score of 99/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Playlist for Youtube Security & Risk Analysis

wordpress.org/plugins/playlist-for-youtube

Display Youtube playlist on your webiste.

20 active installs v1.43 PHP 5.6+ WP 3.5+ Updated Dec 2, 2025

gridplaylistslidervideoyoutube

A · Safe

CVEs total1

Unpatched0

Last CVEMay 8, 2024

Download

Safety Verdict

Is Playlist for Youtube Safe to Use in 2026?

Generally Safe

Score 99/100

Playlist for Youtube has a strong security track record. Known vulnerabilities have been patched promptly.

1 known CVELast CVE: May 8, 2024Updated 4mo ago

Risk Assessment

The playlist-for-youtube plugin v1.43 exhibits a generally strong security posture based on the static analysis provided. The absence of critical or high-severity taint flows, alongside 100% properly escaped output and no file operations, indicates good coding practices. The plugin also demonstrates awareness of security by implementing nonce checks and utilizing prepared statements for a majority of its SQL queries. However, a recent medium-severity Cross-Site Scripting (XSS) vulnerability, though patched, is a significant concern and suggests a potential for input sanitization weaknesses that should be continuously monitored. The presence of an external HTTP request and the lack of capability checks on the identified AJAX handler, while not leading to immediate critical vulnerabilities in this analysis, represent potential attack vectors that could be exploited in conjunction with other weaknesses or future code changes.

Key Concerns

Recent medium severity XSS vulnerability
AJAX handler without capability checks
External HTTP request present

Vulnerabilities

Playlist for Youtube Security Vulnerabilities

CVEs by Year

1 CVE in 2024

2024

Patched Has unpatched

Severity Breakdown

Medium

1 total CVE

CVE-2024-3937medium · 5.5Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Playlist for Youtube <= 1.32 - Authenticated (Editor+) Stored Cross-Site Scripting

May 8, 2024 Patched in 1.40 (23d)

Code Analysis

Analyzed Mar 16, 2026

Playlist for Youtube Code Analysis

Dangerous Functions

Raw SQL Queries

8 prepared

Unescaped Output

23 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

SQL Query Safety

80% prepared10 total queries

Output Escaping

100% escaped23 total outputs

Data Flows

All sanitized

Data Flow Analysis

3 flows

playlists_yt_free (playlist-youtube.php:82)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Playlist for Youtube Attack Surface

Entry Points2

Unprotected0

AJAX Handlers 1

authwp_ajax_remove_pl_ytplaylist-youtube.php:126

Shortcodes 1

[playlist_yt] playlist-youtube.php:150

WordPress Hooks 4

actionadmin_menuplaylist-youtube.php:54

actionadmin_initplaylist-youtube.php:61

actionadmin_print_stylesplaylist-youtube.php:70

actionwp_enqueue_scriptsplaylist-youtube.php:225

Maintenance & Trust

Playlist for Youtube Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedDec 2, 2025

PHP min version5.6

Downloads5K

Community Trust

Rating0/100

Number of ratings0

Active installs20

Alternatives

Playlist for Youtube Alternatives

FancyTube – Video Gallery, Video Slider, and Playlist Slider for YouTube

video-gallery-playlist

100

Create stunning YouTube video galleries, sliders, and playlists. Perfect for bloggers, vloggers, and businesses.

1K No CVEs

Video Gallery – YouTube Playlist, Channel Gallery by YotuWP

yotuwp-easy-youtube-embed

Modern responsive YouTube video gallery helps your website getting noticed from visitors, increase the reach and stand out from the competitors.

20K 5 CVEs

Product Video Gallery for Woocommerce

product-video-gallery-slider-for-woocommerce

100

Product Video Gallery for Woocommerce – Embed videos to product gallery along with images on product single page of WooCommerce.

10K No CVEs

Wonder Slider Lite

wonderplugin-slider-lite

Fully responsive WordPress slider - 3D transition effects, built-in Lightbox gallery, supports images, mp4 videos, YouTube, Vimeo and WordPress posts.

9K 2 CVEs

My YouTube Channel

youtube-channel

Show video thumbnails or playable video block of recent YouTube Playlist, Channel (User Uploads) videos.

5K 4 CVEs

Developer Profile

Playlist for Youtube Developer Profile

manu225

17 plugins · 27K total installs

trust score

Avg Security Score

100/100

Avg Patch Time

29 days

View full developer profile

Detection Fingerprints

How We Detect Playlist for Youtube

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/playlist-for-youtube/css/admin.css/wp-content/plugins/playlist-for-youtube/css/grid.css

Script Paths

/wp-content/plugins/playlist-for-youtube/js/grid.js

HTML / DOM Fingerprints

CSS Classes

youtube-grid-playlist

Data Attributes

data-playlist-id

JS Globals

jQuery

Shortcode Output

[playlist_yt id=...]

FAQ