Every CVE whose affected-product data names Blubrry Powerpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2021-24123 — CVSS 7.2 (high): Arbitrary file upload in the PowerPress WordPress plugin, versions before 8.3.8, did not verify some of the uploaded feed images (such as…
CVE-2023-41239 — CVSS 6.4 (medium): Server-Side Request Forgery (SSRF) vulnerability in Blubrry PowerPress Podcasting plugin by Blubrry.This issue affects PowerPress…
CVE-2024-9230 — CVSS 5.9 (medium): The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a…
CVE-2023-1917 — CVSS 5.4 (medium): The PowerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in versions up to, and…
CVE-2023-4820 — CVSS 5.4 (medium): The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.0.12 does not sanitize and escape the media url field in posts…
CVE-2024-9227 — CVSS 4.8 (medium): The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a…
CVE-2015-1385 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Blubrry PowerPress Podcasting plugin before 6.0.1 for WordPress allows remote attackers to…