Unrated severityOSV Advisory· Published Dec 17, 2025· Updated Apr 7, 2026
PodcastGenerator Stored Cross-Site Scripting via Freebox Content Field
CVE-2023-53919
Description
PodcastGenerator 3.2.9 contains a stored cross-site scripting vulnerability in the Freebox content field accessible through the theme customization interface (theme_freebox.php). Malicious JavaScript payloads injected into the Freebox content execute when users visit the application's home page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 2.5, 2.6, 2.7, …
- Range: <=3.2.9
Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/51454mitreexploit
- www.vulncheck.com/advisories/podcastgenerator-stored-cross-site-scripting-via-freebox-content-fieldmitrethird-party-advisory
- podcastgenerator.netmitreproduct
News mentions
0No linked articles in our index yet.