Lucene search
K

226 matches found

Vulnrichment
Vulnrichment
added 2025/04/09 4:9 p.m.5 views

CVE-2025-32691 WordPress PowerPress Podcasting plugin <= 11.12.6 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery SSRF vulnerability in blubrry PowerPress Podcasting powerpress allows Server Side Request Forgery.This issue affects PowerPress Podcasting: from n/a through = 11.12.6...

4.9CVSS8.6AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2025/04/09 4:9 p.m.58 views

CVE-2025-32691

CVE-2025-32691: PowerPress Podcasting (Blubrry) WordPress plugin exposed SSRF. Affected: PowerPress Podcasting

4.9CVSS7.2AI score0.00246EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/09 4:9 p.m.16 views

CVE-2025-32691 WordPress PowerPress Podcasting plugin <= 11.12.6 - Server Side Request Forgery (SSRF) Vulnerability

Server-Side Request Forgery SSRF vulnerability in blubrry PowerPress Podcasting powerpress allows Server Side Request Forgery.This issue affects PowerPress Podcasting: from n/a through = 11.12.6...

4.9CVSS0.00246EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/09 3:25 p.m.8 views

WordPress PowerPress Podcasting plugin <= 11.12.5 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin PowerPress Podcasting versions = 11.12.5...

6.5CVSS7.1AI score0.00269EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2025/04/09 3:25 p.m.6 views

WordPress PowerPress Podcasting plugin <= 11.12.6 - Server Side Request Forgery (SSRF) Vulnerability

Server Side Request Forgery SSRF Vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin PowerPress Podcasting versions = 11.12.6...

4.9CVSS8.2AI score0.00246EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.5 views

WordPress plugin PowerPress Podcasting 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

4.9CVSS6.4AI score0.00246EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.5 views

PT-2025-15828 · Unknown · Powerpress Podcasting

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting versions through 11.12.4 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker could...

6.5CVSS6.8AI score0.00269EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.5 views

WordPress plugin PowerPress Podcasting 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS6.6AI score0.00269EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.4 views

PT-2025-15829 · Unknown · Powerpress Podcasting

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting versions through 11.12.4 Description: The issue is a Server-Side Request Forgery SSRF vulnerability, which allows for Server Side Request Forgery. Recommendations: For versions through 11.12.4, update to a version later...

4.9CVSS6AI score0.00246EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/04/05 2:22 p.m.9 views

CVE-2025-31436

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Angelo Mandato Blubrry PowerPress Podcasting plugin MultiSite add-on powerpress-multisite allows Reflected XSS.This issue affects Blubrry PowerPress Podcasting plugin MultiSite add-on: from n/a...

7.1CVSS7.2AI score0.00276EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/03 4:2 p.m.10 views

WordPress Blubrry PowerPress Podcasting plugin MultiSite add-on plugin <= 0.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska Patchstack Alliance in WordPress Plugin Blubrry PowerPress Podcasting plugin MultiSite add-on versions = 0.1.1...

7.1CVSS6.8AI score0.00276EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/03 2:15 p.m.9 views

CVE-2025-31436

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Angelo Mandato Blubrry PowerPress Podcasting plugin MultiSite add-on powerpress-multisite allows Reflected XSS.This issue affects Blubrry PowerPress Podcasting plugin MultiSite add-on: from n/a...

7.1CVSS0.00276EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/03 1:27 p.m.28 views

CVE-2025-31436 WordPress Blubrry PowerPress Podcasting plugin MultiSite add-on plugin <= 0.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Angelo Mandato Blubrry PowerPress Podcasting plugin MultiSite add-on powerpress-multisite allows Reflected XSS.This issue affects Blubrry PowerPress Podcasting plugin MultiSite add-on: from n/a...

7.1CVSS0.00276EPSS
Exploits0References1
CVE
CVE
added 2025/04/03 1:27 p.m.53 views

CVE-2025-31436

CVE-2025-31436 is a reflected cross-site scripting vulnerability reported in the Blubrry PowerPress Podcasting plugin MultiSite add-on for WordPress. Affected range is from unspecified to version 0.1.1. The issue is caused by improper input neutralization during web page generation, enabling an a...

7.1CVSS7.2AI score0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/03 1:27 p.m.16 views

CVE-2025-31436 WordPress Blubrry PowerPress Podcasting plugin MultiSite add-on plugin <= 0.1.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Angelo Mandato Blubrry PowerPress Podcasting plugin MultiSite add-on allows Reflected XSS. This issue affects Blubrry PowerPress Podcasting plugin MultiSite add-on: from n/a through 0.1.1...

7.1CVSS7.2AI score0.00276EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.5 views

WordPress plugin Blubrry PowerPress Podcasting plugin MultiSite add-on 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Blubrry PowerPress Podcasting...

7.1CVSS6.8AI score0.00276EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/03 12:0 a.m.11 views

PT-2025-14713 · WordPress · Blubrry Powerpress Podcasting Plugin

Name of the Vulnerable Software and Affected Versions: Blubrry PowerPress Podcasting plugin MultiSite add-on versions 0.1.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Reflected X...

7.1CVSS7AI score0.00276EPSS
Exploits0References5
NVD
NVD
added 2024/10/11 1:15 p.m.12 views

CVE-2024-9543

The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versions up to, and including, 11.9.18 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS0.00333EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/10/11 5:33 a.m.9 views

CVE-2024-9543 Powerpress <= 11.9.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via skipto Shortcode

The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versions up to, and including, 11.9.18 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS5.8AI score0.00333EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/10/11 5:33 a.m.18 views

CVE-2024-9543 Powerpress <= 11.9.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via skipto Shortcode

The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versions up to, and including, 11.9.18 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it...

6.4CVSS0.00333EPSS
Exploits0References5
Rows per page
Query Builder