Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 11:38 a.m.10 views

CVE-2025-0554

The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version = 4.1.25 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...

4.4CVSS5.8AI score0.00261EPSS
Exploits0References1
circl
circl
added 2025/01/18 5:54 a.m.10 views

CVE-2025-0554

creationtimestamp| type| source ---|---|--- 2025-01-18 05:54:51+00:00| seen| https://infosec.exchange/users/cve/statuses/113847808220833448 2025-01-18 06:15:55+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfynuv6n5t2p 2025-01-18 06:34:14+00:00| seen|...

4.4CVSS7.3AI score0.00261EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/01/18 5:33 a.m.8 views

CVE-2025-0554 Podlove Podcast Publisher <= 4.1.25 - Authenticated (Admin+) Stored Cross-Site Scripting via Feed Name

The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version = 4.1.25 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...

4.4CVSS5.8AI score0.00261EPSS
Exploits0References2
osv
osv
added 2025/01/18 5:33 a.m.5 views

CVE-2025-0554 Podlove Podcast Publisher <= 4.1.25 - Authenticated (Admin+) Stored Cross-Site Scripting via Feed Name

The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version = 4.1.25 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject...

4.4CVSS7.3AI score0.00261EPSS
Exploits0References4
Rows per page
Query Builder