Eteubert Podlove Podcast Publisher

5 CVEs affecting Eteubert Podlove Podcast Publisher. Latest disclosed: 2025-09-23. Critical: 1, High: 0.

Top CVEs affecting Eteubert Podlove Podcast Publisher
CVESeverityScorePublishedSummary
CVE-2025-10147Critical9.82025-09-23The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'move_as_original_file' f…
CVE-2024-1110Medium5.32024-02-07The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init() function…
CVE-2024-1109Medium5.32024-02-07The Podlove Podcast Publisher plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the init_download() and in…
CVE-2025-0554Medium4.42025-01-18The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version <= 4.1.25 due to insufficien…
CVE-2025-1383Medium4.32025-03-06The Podlove Podcast Publisher plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2.2. This is due to miss…