CVE-2026-12098 - PowerPress Podcasting plugin by Blubrry
CVE ID : CVE-2026-12098
Published : June 18, 2026, 6:50 a.m. | 52 minutes ago
Description : The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'embed' ...
cvefeed.io
The PowerPress Podcasting plugin by Blubrry plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'embed' Episode Meta Field in all versions up to, and including, 11.16.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with author-level access and above, to inject …
