Blubrry Powerpress Podcasting Plugin By Blubrry
7 CVEs affecting Blubrry Powerpress Podcasting Plugin By Blubrry. Latest disclosed: 2026-04-08. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-13536 | High | 8.8 | 2025-11-27 | The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and includi… |
CVE-2026-2988 | Medium | 6.4 | 2026-04-08 | The Blubrry PowerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'powerpress' and 'podcast' shortcodes in versions up to, and i… |
CVE-2024-9543 | Medium | 6.4 | 2024-10-11 | The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'skipto' shortcode in all versio… |
CVE-2024-6588 | Medium | 6.4 | 2024-07-12 | The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘media_url’ parameter in all versions… |
CVE-2023-41239 | Medium | 6.4 | 2023-11-13 | Server-Side Request Forgery (SSRF) vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress Podcasting plugin by Blubrry… |
CVE-2023-30778 | Medium | 5.5 | 2023-08-15 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry plugin <= 10.0.1 versions. |
CVE-2023-1917 | Medium | 5.4 | 2023-06-09 | The PowerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in versions up to, and including, 10.0 due to in… |