cleantalk
Vulnerabilities and Security Researches

PowerPress Podcasting plugin by Blubrry, CVE-2024-9230

CVE, Research URL

CVE-2024-9230

Home page URL

Security reports for PowerPress Podcasting plugin by Blubrry

Application

PowerPress Podcasting plugin by Blubrry

Published on
Apr 14, 2025
Research Description
The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow author and above users to perform Stored Cross-Site Scripting attacks
Affected versions
Min -, max 11.9.18.
Status
vulnerable
Previous vulnerability researches
WP Import Export Lite (CVE-2022-0236) , Jun 07, 2024
WP Import Export Lite (CVE-2024-31308) , Jun 07, 2024
WP Import Export Lite (CVE-2025-2839) , Apr 23, 2025
New vulnerability
Related Posts via Taxonomies (CVE-2025-46520) , Apr 25, 2025
Advanced Accordion Gutenberg Block (CVE-2025-2543) , Apr 25, 2025
Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light (CVE-2025-39378) , Apr 25, 2025
PowerPress Podcasting plugin by Blubrry (CVE-2024-9230) , Apr 25, 2025
Capturly (CVE-2025-39379) , Apr 25, 2025