Podlove Podcast Publisher Security Vulnerabilities and Issues — Podlove Podcast Publisher CVE List

Lucene search

PodlovePodlove Podcast Publisher

4 matches found

CVE•added 2024/02/07 11:15 a.m.•179 views

CVE-2024-1110

The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init() function in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to import the plugin's settings.

5.3CVSS5.4AI score0.0015EPSS

CVE•added 2024/04/24 8:15 a.m.•58 views

CVE-2024-32812

Server-Side Request Forgery (SSRF) vulnerability in Podlove Podlove Podcast Publisher.This issue affects Podlove Podcast Publisher: from n/a through 4.0.11.

5.4CVSS6.8AI score0.00073EPSS

CVE•added 2023/04/07 10:15 a.m.•36 views

CVE-2023-25046

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Podlove Podlove Podcast Publisher plugin

5.9CVSS5AI score0.00063EPSS

CVE•added 2024/02/07 11:15 a.m.•29 views

CVE-2024-1109

The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the init_download() and init() functions in all versions up to, and including, 4.0.11. This makes it possible for unauthenticated attackers to export the plugin's tra...

5.3CVSS5.4AI score0.0024EPSS