CVE-2025-70336 | PodcastGenerator 3.2.9 Create New Live Item TITLE/SHORT DESCRIPTION/LONG DESCRIPTION cross site scripting

Inserito da Angelo Barbosa | Gen 28, 2026 | CVE

A vulnerability labeled as problematic has been found in PodcastGenerator 3.2.9. Affected by this issue is some unknown functionality of the component Create New Live Item. Executing a manipulation of the argument TITLE/SHORT DESCRIPTION/LONG DESCRIPTION can lead to cross site scripting.

The identification of this vulnerability is CVE-2025-70336. The attack may be launched remotely. There is no exploit available.

CVE-2025-70336 | PodcastGenerator 3.2.9 Create New Live Item TITLE/SHORT DESCRIPTION/LONG DESCRIPTION cross site scripting

Post correlati

CVE-2025-27231 | Zabbix up to 6.0.40/7.0.17/7.2.11/7.4.1 LDAP Bind password insufficiently protected credentials

CVE-2024-6996 | Google Chrome up to 126.0.6478.182 Frames Privilege Escalation

CVE-2025-15453 | milvus up to 2.6.7 HTTP Endpoint pkg/util/expr/expr.go expr.Exec code deserialization (Issue 46442)

CVE-2024-39810 | Mattermost up to 9.5.7/9.10.0/9.11.0 ElasticSearch Configuration /dev/zero CA path resource consumption