cleantalk
Vulnerabilities and Security Researches

Podlove Web Player, CVE-2026-24385

CVE, Research URL

CVE-2026-24385

Home page URL

Security reports for Podlove Web Player

Application

Podlove Web Player

Published on
Mar 05, 2026
Research Description
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through <= 5.9.1.
Affected versions
max 5.9.1.
Status
vulnerable
Previous vulnerability researches
YayMail &#8211; WooCommerce Email Customizer (CVE-2026-27327) , Mar 29, 2026
New vulnerability
Scientific and Interactive Blocks &#8211; inseri core (CVE-2026-27344) , Mar 30, 2026
Advanced WooCommerce Product Sales Reporting &#8211; Statistics &amp; Forecast (CVE-2026-24993) , Mar 30, 2026
Product Feed for WooCommerce &#8211; Google Shops, Facebook Shop, TikTok, Instagram, and More (CVE-2026-22480) , Mar 30, 2026
WPCasa (CVE-2025-62043) , Mar 30, 2026
List category posts (CVE-2026-32419) , Mar 30, 2026