cleantalk
Vulnerabilities and Security Researches

PowerPress Podcasting plugin by Blubrry, CVE-2024-9230

CVE, Research URL

CVE-2024-9230

Home page URL

Security reports for PowerPress Podcasting plugin by Blubrry

Application

PowerPress Podcasting plugin by Blubrry

Published on
Apr 14, 2025
Research Description
The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow author and above users to perform Stored Cross-Site Scripting attacks
Affected versions
Min -, max 11.9.18.
Status
vulnerable
Previous vulnerability researches
CM Ad Changer – Ad Manager and Ad Server (CVE-2025-46245) , Apr 24, 2025
CM Ad Changer – Ad Manager and Ad Server (CVE-2025-24758) , Feb 19, 2025
CM Ad Changer – Ad Manager and Ad Server (eb01fee8297a4a9b954f478959dbdb7e8b8899cf) , Jun 07, 2024
New vulnerability
Related Posts via Taxonomies (CVE-2025-46520) , Apr 25, 2025
Advanced Accordion Gutenberg Block (CVE-2025-2543) , Apr 25, 2025
Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light (CVE-2025-39378) , Apr 25, 2025
PowerPress Podcasting plugin by Blubrry (CVE-2024-9230) , Apr 25, 2025
Capturly (CVE-2025-39379) , Apr 25, 2025