Security Advisory

CVE-2024-9227

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-15 20:07:19

Last updated 2025-05-17 03:01:18

Assigner WPScan

State PUBLISHED

Description

The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow admin users to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

← Browse all CVEs View on cve.org ↗