Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Seriously Simple Podcasting — Vulnerabilities & Security Advisories 14

All 14 CVE vulnerabilities found in Seriously Simple Podcasting, with AI-generated Chinese analysis, references, and POCs.

This page tracks security vulnerabilities and weaknesses associated with the Seriously Simple Podcasting WordPress plugin, categorized under general software vulnerability aggregations. It serves as a centralized repository for researchers, developers, and security analysts to monitor the integrity and risk profile of this specific open-source product over time. The content collected on this page encompasses a broad spectrum of vulnerability types affecting the product, including but not limited to Cross-Site Scripting (XSS), SQL Injection, Broken Access Control, and Insecure Direct Object References. The data spans multiple years, capturing historical patches, advisory disclosures, and reported exploits from the initial release through to the most recent updates. This temporal range allows for a comprehensive analysis of how the vendor responds to emerging threats and addresses legacy code issues. Visitors can utilize this resource to track a vendor’s advisory patterns and assess their responsiveness to security incidents. By examining the aggregated data, users can gain a deeper understanding of specific weakness classes that frequently impact this plugin ecosystem. Additionally, individuals can look up the product’s complete vulnerability history to evaluate its long-term stability and identify recurring security themes. This holistic view aids in making informed decisions about whether to update, replace, or continue using the software in production environments. The information presented here is intended to foster transparency and improve overall supply chain security practices for the WordPress community.

Vendor: Unknown

CVE IDTitleCVSSSeverityPublished
CVE-2026-39505 WordPress Seriously Simple Podcasting plugin <= 3.14.2 - Broken Access Control vulnerability CWE-862 5.3 Medium2026-04-08
CVE-2026-24952 WordPress Seriously Simple Podcasting plugin <= 3.14.1 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2026-02-03
CVE-2026-24360 WordPress Seriously Simple Podcasting plugin <= 3.14.1 - Server Side Request Forgery (SSRF) vulnerability CWE-918 4.4 Medium2026-01-22
CVE-2025-66060 WordPress Seriously Simple Podcasting plugin <= 3.13.0 - Broken Access Control vulnerability CWE-862 5.3 Medium2025-11-21
CVE-2025-66061 WordPress Seriously Simple Podcasting plugin <= 3.13.0 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2025-11-21
CVE-2025-66059 WordPress Seriously Simple Podcasting plugin <= 3.13.0 - Sensitive Data Exposure vulnerability CWE-497 5.3 Medium2025-11-21
CVE-2025-62882 WordPress Seriously Simple Podcasting plugin <= 3.13.0 - Broken Access Control vulnerability CWE-862 4.3 Medium2025-10-27
CVE-2025-49923 WordPress Seriously Simple Podcasting plugin <= 3.11.1 - Cross Site Scripting (XSS) vulnerability CWE-79 5.9 Medium2025-10-22
CVE-2025-46261 WordPress Seriously Simple Podcasting plugin <= 3.9.0 - Cross Site Scripting (XSS) vulnerability CWE-79 5.9 Medium2025-04-24
CVE-2024-9667 Seriously Simple Podcasting <= 3.5.0 - Reflected Cross-Site Scripting via add_query_arg Parameter CWE-79 6.1 Medium2024-11-05
CVE-2024-3751 Seriously Simple Podcasting < 3.3.0 - Admin+ Stored XSS 4.8AIMediumAI2024-07-13
CVE-2024-25599 WordPress Seriously Simple Podcasting plugin <= 3.0.2 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2024-03-28
CVE-2023-6444 Seriously Simple Podcasting < 3.0.0 - Unauthenticated Administrator Email Disclosure 5.3AIMediumAI2024-03-11
CVE-2022-4571 Seriously Simple Podcasting < 2.19.1 - Contributor+ Stored XSS 5.4 -2023-01-16

All 14 known CVE vulnerabilities affecting Seriously Simple Podcasting with full Chinese analysis, references, and POCs where available.