| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-2988 | Blubrry PowerPress <= 11.15.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via powerpress and podcast Shortcodes | blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 6.4 | 2026-04-08 02:25:41 | Deep Dive |
| CVE-2026-32351 | WordPress PowerPress Podcasting plugin <= 11.15.13 - Cross Site Scripting (XSS) vulnerability | blubrry | PowerPress Podcasting | 中危 | - | 2026-03-13 11:41:59 | Deep Dive |
| CVE-2026-23798 | WordPress PowerPress Podcasting plugin <= 11.15.10 - PHP Object Injection vulnerability | blubrry | PowerPress Podcasting | 中危 | - | 2026-03-05 05:53:49 | Deep Dive |
| CVE-2025-13536 | Blubrry PowerPress <= 11.15.2 - Authenticated (Contributor+) Arbitrary File Upload via 'powerpress_edit_post' | blubrry | PowerPress Podcasting plugin by Blubrry | High | 8.8 | 2025-11-27 08:27:05 | Deep Dive |
| CVE-2025-64201 | WordPress PowerPress Podcasting plugin <= 11.13.12 - Cross Site Request Forgery (CSRF) vulnerability | blubrry | PowerPress Podcasting | Medium | 4.3 | 2025-10-29 08:38:06 | Deep Dive |
| CVE-2025-49984 | WordPress PowerPress Podcasting plugin <= 11.13.11 - Server Side Request Forgery (SSRF) Vulnerability | blubrry | PowerPress Podcasting | Medium | 4.9 | 2025-06-20 15:04:11 | Deep Dive |
| CVE-2024-9227 | PowerPress Podcasting < 11.9.18 - Author+ XSS | Unknown | PowerPress Podcasting plugin by Blubrry | - | - | 2025-05-15 20:07:20 | Deep Dive |
| CVE-2025-46264 | WordPress PowerPress Podcasting <= 11.12.5 - Arbitrary File Upload Vulnerability | blubrry | PowerPress Podcasting | Critical | 9.9 | 2025-04-24 16:08:30 | Deep Dive |
| CVE-2024-9230 | PowerPress Podcasting < 11.9.18 - Author+ XSS via Podcast URL | Unknown | PowerPress Podcasting plugin by Blubrry | - | - | 2025-04-14 06:00:05 | Deep Dive |
| CVE-2025-32690 | WordPress PowerPress Podcasting plugin <= 11.12.5 - Cross Site Scripting (XSS) Vulnerability | blubrry | PowerPress Podcasting | Medium | 6.5 | 2025-04-09 16:09:10 | Deep Dive |
| CVE-2025-32691 | WordPress PowerPress Podcasting plugin <= 11.12.6 - Server Side Request Forgery (SSRF) Vulnerability | blubrry | PowerPress Podcasting | Medium | 4.9 | 2025-04-09 16:09:10 | Deep Dive |
| CVE-2025-31436 | WordPress Blubrry PowerPress Podcasting plugin MultiSite add-on plugin <= 0.1.1 - Reflected Cross Site Scripting (XSS) vulnerability | Angelo Mandato | Blubrry PowerPress Podcasting plugin MultiSite add-on | High | 7.1 | 2025-04-03 13:27:10 | Deep Dive |
| CVE-2024-9543 | Powerpress <= 11.9.18 - Authenticated (Contributor+) Stored Cross-Site Scripting via skipto Shortcode | blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 6.4 | 2024-10-11 05:33:11 | Deep Dive |
| CVE-2024-6588 | PowerPress Podcasting plugin by Blubrry <= 11.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via media_url Parameter | blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 6.4 | 2024-07-12 06:50:30 | Deep Dive |
| CVE-2023-41239 | WordPress PowerPress Podcasting Plugin <= 11.0.6 is vulnerable to Server Side Request Forgery (SSRF) | Blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 6.4 | 2023-11-13 02:42:43 | Deep Dive |
| CVE-2023-4820 | PowerPress Podcasting < 11.0.12 - Contributor+ Stored XSS | Unknown | PowerPress Podcasting plugin by Blubrry | 中危 | - | 2023-10-16 19:39:22 | Deep Dive |
| CVE-2023-30778 | WordPress PowerPress Podcasting Plugin <= 10.0.1 is vulnerable to Cross Site Scripting (XSS) | Blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 5.5 | 2023-08-15 12:40:27 | Deep Dive |
| CVE-2023-1917 | PowerPress <= 10.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | blubrry | PowerPress Podcasting plugin by Blubrry | Medium | 5.4 | 2023-06-09 05:33:16 | Deep Dive |