CVE-2023-53920

Publication date

2025-12-17 22:44:52

Family

VulnCheck

State

PUBLISHED

Description

PodcastGenerator 3.2.9 contains a stored cross-site scripting vulnerability in the podcast title field accessible through the podcast details interface (podcast_details.php). Malicious JavaScript payloads injected into the podcast title execute when users visit the applications home page.