Vulnerabilities and security researches forpodlove-web-player podlove-web-player

Nov 10, 2025

CVE, Research URL: CVE-2025-62908
Home page URL: Security reports for Podlove Web Player
Application: Podlove Web Player
Date: Oct 27, 2025
Research Description: Missing Authorization vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Podlove Web Player: from n/a through <= 5.9.1.
Affected versions: max 5.9.1.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2024-35710
Home page URL: Security reports for Podlove Web Player
Application: Podlove Web Player
Date: Jun 08, 2024
Research Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Podlove Podlove Web Player.This issue affects Podlove Web Player: from n/a through 5.7.3.
Affected versions: max 5.7.4.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: -
Home page URL: Security reports for Podlove Web Player
Application: Podlove Web Player
Date: Mar 07, 2024
Research Description: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Affected versions: max 5.7.3.
Status: vulnerable

CVE, Research URL: CVE-2024-29788
Home page URL: Security reports for Podlove Web Player
Application: Podlove Web Player
Date: Mar 27, 2024
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Podlove Podlove Web Player allows Stored XSS.This issue affects Podlove Web Player: from n/a through 5.7.1.
Affected versions: max 5.7.3.
Status: vulnerable