cleantalk
Vulnerabilities and Security Researches

Podlove Web Player, CVE-2024-29788

CVE, Research URL

CVE-2024-29788

Home page URL

Security reports for Podlove Web Player

Application

Podlove Web Player

Published on
Mar 27, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Podlove Podlove Web Player allows Stored XSS.This issue affects Podlove Web Player: from n/a through 5.7.1.
Affected versions
max 5.7.3.
Status
vulnerable
Previous vulnerability researches
Podlove Web Player (CVE-2024-35710) , Jun 10, 2024
Podlove Web Player (CVE-2025-62908) , Nov 10, 2025
Podlove Web Player (CVE-2026-24385) , Mar 30, 2026
Podlove Web Player (CVE-2023-47691) , Jun 07, 2024
Podlove Web Player (CVE-2024-29788) , Jun 07, 2024
New vulnerability
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-24373) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32385) , Mar 30, 2026
RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32498) , Mar 30, 2026
Gallery Block (Meow Gallery) (CVE-2026-32418) , Mar 30, 2026