The StreamCast – Radio Player for WordPress plugin is not secure in all versions up to 2.2.3. This means that it can be exploited by hackers to inject dangerous scripts into web pages, potentially affecting anyone who visits those pages. This vulnerability only affects sites with multiple installations and disabled unfiltered_html.