| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32448 | WordPress Podlove Podcast Publisher plugin <= 4.3.3 - Cross Site Scripting (XSS) vulnerability | Eric Teubert | Podlove Podcast Publisher | 中危 | - | 2026-03-13 11:42:21 | Deep Dive |
| CVE-2026-24385 | WordPress Podlove Web Player plugin <= 5.9.1 - PHP Object Injection vulnerability | gerritvanaaken | Podlove Web Player | 中危 | - | 2026-03-05 05:53:49 | Deep Dive |
| CVE-2025-10147 | Podlove Podcast Publisher <= 4.2.6 - Unauthenticated Arbitrary File Upload | eteubert | Podlove Podcast Publisher | Critical | 9.8 | 2025-09-23 08:26:15 | Deep Dive |
| CVE-2025-58227 | WordPress Podlove Subscribe button Plugin <= 1.3.11 - Cross Site Scripting (XSS) Vulnerability | Alexander Lueken | Podlove Subscribe button | Medium | 6.5 | 2025-09-22 18:23:45 | Deep Dive |
| CVE-2025-58204 | WordPress Podlove Podcast Publisher Plugin <= 4.2.5 - Open Redirection Vulnerability | Eric Teubert | Podlove Podcast Publisher | Medium | 4.7 | 2025-08-27 17:45:46 | Deep Dive |
| CVE-2024-13729 | Podlove Podcast Publisher < 4.1.24 - Admin+ Stored XSS | Unknown | Podlove Podcast Publisher | - | - | 2025-05-15 20:07:04 | Deep Dive |
| CVE-2024-13730 | Podlove Podcast Publisher < 4.2.1 - Admin+ Stored XSS | Unknown | Podlove Podcast Publisher | - | - | 2025-05-15 20:07:04 | Deep Dive |
| CVE-2025-1383 | Podlove Podcast Publisher <= 4.2.2 - Cross-Site Request Forgery via ajax_transcript_delete Function | eteubert | Podlove Podcast Publisher | Medium | 4.3 | 2025-03-06 11:11:01 | Deep Dive |
| CVE-2025-0554 | Podlove Podcast Publisher <= 4.1.25 - Authenticated (Admin+) Stored Cross-Site Scripting via Feed Name | eteubert | Podlove Podcast Publisher | Medium | 4.4 | 2025-01-18 05:33:49 | Deep Dive |
| CVE-2024-52393 | WordPress Podlove Podcast Publisher plugin <= 4.1.15 - Admin+ Remote Code Execution (RCE) vulnerability | Eric Teubert | Podlove Podcast Publisher | Critical | 9.1 | 2024-11-14 17:23:41 | Deep Dive |
| CVE-2024-43984 | WordPress Podlove Podcast Publisher plugin <= 4.1.13 - CSRF to Remote Code Execution (RCE) vulnerability | Podlove | Podlove Podcast Publisher | Critical | 9.6 | 2024-10-31 10:02:28 | Deep Dive |
| CVE-2024-43983 | WordPress Podlove Podcast Publisher plugin <= 4.1.13 - Cross Site Scripting (XSS) vulnerability | Podlove | Podlove Podcast Publisher | Medium | 6.5 | 2024-09-17 23:27:59 | Deep Dive |
| CVE-2024-32143 | WordPress Podlove Podcast Publisher plugin <= 4.1.0 - Broken Access Control vulnerability | Podlove | Podlove Podcast Publisher | Medium | 4.3 | 2024-06-11 17:03:09 | Deep Dive |
| CVE-2024-35710 | WordPress Podlove Web Player plugin <= 5.7.3 - Sensitive Data Exposure vulnerability | Podlove | Podlove Web Player | Medium | 5.3 | 2024-06-08 14:01:55 | Deep Dive |
| CVE-2024-32712 | WordPress Podlove Podcast Publisher plugin <= 4.0.14 - Broken Access Control vulnerability | Podlove | Podlove Podcast Publisher | High | 7.5 | 2024-05-09 12:25:06 | Deep Dive |
| CVE-2024-32812 | WordPress Podlove Podcast Publisher plugin <= 4.0.11 - Server Side Request Forgery (SSRF) vulnerability | Podlove | Podlove Podcast Publisher | Medium | 5.4 | 2024-04-24 07:14:56 | Deep Dive |
| CVE-2024-32139 | WordPress Podlove Podcast Publisher plugin <= 4.0.12 - SQL Injection vulnerability | Podlove | Podlove Podcast Publisher | High | 8.5 | 2024-04-15 07:18:06 | Deep Dive |
| CVE-2024-29788 | WordPress Podlove Web Player plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability | Podlove | Podlove Web Player | Medium | 6.5 | 2024-03-27 12:46:34 | Deep Dive |
| CVE-2024-29915 | WordPress Podlove Podcast Publisher plugin <= 4.0.9 - Reflected Cross Site Scripting (XSS) vulnerability | Podlove | Podlove Podcast Publisher | High | 7.1 | 2024-03-27 07:07:03 | Deep Dive |
| CVE-2024-1118 | Podlove Subscribe button <= 1.3.10 - Authenticated (Contributor+) SQL Injection | chemiker | Podlove Subscribe button | High | 8.8 | 2024-02-07 11:02:40 | Deep Dive |