Lucene search
+L

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:32 p.m.13 views

CVE-2023-4820

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.0.12 does not sanitize and escape the media url field in posts, which could allow users with privileges as low as contributor to inject arbitrary web scripts that could target a site admin or superadmin...

5.4CVSS6.5AI score0.00403EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47653

Malicious code in bioql PyPI...

6.4CVSS6.5AI score0.00387EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 2:26 a.m.12 views

CVE-2015-9410

The Blubrry PowerPress Podcasting plugin 6.0.4 for WordPress has XSS via the tab parameter...

5.4CVSS6AI score0.01183EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/17 9:2 p.m.11 views

CVE-2024-9227

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow admin users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 8:16 p.m.10 views

CVE-2024-9227

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow admin users to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00266EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:7 p.m.39 views

CVE-2024-9227

The CVE concerns the WordPress PowerPress Podcasting plugin by Blubrry (versions prior to 11.9.18). The issue is insufficient sanitization/escaping of certain podcast settings when adding a podcast, enabling Stored Cross-Site Scripting (XSS) attacks and affecting admin users, even with unfiltered...

4.8CVSS5.8AI score0.00266EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/15 12:0 a.m.7 views

PT-2025-21539 · WordPress · Powerpress Podcasting Plugin

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting plugin by Blubrry for WordPress versions prior to 11.9.18 Description: The issue concerns the PowerPress Podcasting plugin's failure to properly sanitize and escape certain settings when adding a podcast. This could enab...

4.8CVSS4.8AI score0.00266EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/04/16 9:9 a.m.11 views

CVE-2024-9230

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow author and above users to perform Stored Cross-Site Scripting attacks...

5.9CVSS5.8AI score0.00252EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/04/14 12:0 a.m.6 views

PT-2025-16205 · Blubrry · Powerpress Podcasting Plugin

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting plugin by Blubrry WordPress plugin versions prior to 11.9.18 Description: The issue is related to the PowerPress Podcasting plugin by Blubrry WordPress plugin, which does not properly sanitise and escape some of its...

5.9CVSS5.8AI score0.00252EPSS
Exploits1References8
NVD
NVD
added 2023/11/13 3:15 a.m.23 views

CVE-2023-41239

Server-Side Request Forgery SSRF vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress Podcasting plugin by Blubrry: from n/a through 11.0.6...

6.5CVSS0.00381EPSS
Exploits0References1
Prion
Prion
added 2023/11/13 3:15 a.m.14 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress Podcasting plugin by Blubrry: from n/a through 11.0.6...

4CVSS7.1AI score0.00381EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/13 2:42 a.m.29 views

CVE-2023-41239 WordPress PowerPress Podcasting Plugin <= 11.0.6 is vulnerable to Server Side Request Forgery (SSRF)

Server-Side Request Forgery SSRF vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress Podcasting plugin by Blubrry: from n/a through 11.0.6...

6.4CVSS6.7AI score0.00381EPSS
Exploits0References1
NVD
NVD
added 2023/10/16 8:15 p.m.18 views

CVE-2023-4820

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.0.12 does not sanitize and escape the media url field in posts, which could allow users with privileges as low as contributor to inject arbitrary web scripts that could target a site admin or superadmin...

5.4CVSS5.4AI score0.00403EPSS
Exploits2References1
NVD
NVD
added 2023/08/15 1:15 p.m.29 views

CVE-2023-30778

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry plugin = 10.0.1 versions...

5.5CVSS5.2AI score0.00344EPSS
Exploits0References1
Prion
Prion
added 2023/08/15 1:15 p.m.17 views

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry plugin = 10.0.1 versions...

4.9CVSS5.2AI score0.00344EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/15 12:40 p.m.26 views

CVE-2023-30778 WordPress PowerPress Podcasting Plugin <= 10.0.1 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry plugin = 10.0.1 versions...

5.5CVSS5.4AI score0.00344EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/02/02 3:0 p.m.36 views

CVE-2015-1385

Cross-site scripting XSS vulnerability in the Blubrry PowerPress Podcasting plugin before 6.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a powerpress-editcategoryfeed action in the powerpressadmincategoryfeeds.php page to...

5.7AI score0.02237EPSS
Exploits3References6
Rows per page
Query Builder