Podlove Podcast Publisher, CVE-2026-32448

CVE, Research URL: CVE-2026-32448
Home page URL: Security reports for Podlove Podcast Publisher
Application: Podlove Podcast Publisher
Published on: Mar 14, 2026
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Eric Teubert Podlove Podcast Publisher podlove-podcasting-plugin-for-wordpress allows Stored XSS.This issue affects Podlove Podcast Publisher: from n/a through <= 4.3.3.
Affected versions: max 4.3.3.
Status: vulnerable