Unrated severityNVD Advisory· Published Apr 14, 2025· Updated Apr 14, 2025
PowerPress Podcasting < 11.9.18 - Author+ XSS via Podcast URL
CVE-2024-9230
Description
The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow author and above users to perform Stored Cross-Site Scripting attacks
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)
- Range: <11.9.18
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/ab5eaf57-fb61-4a08-b439-42dea40b7914/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.