PT-2024-24800 · Unknown · Podlove Podcast Publisher
Lvt-Tholv2K
·
Published
2024-05-09
·
Updated
2024-05-18
·
CVE-2024-32712
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Podlove Podcast Publisher versions through 4.0.14
Description
The issue is related to a Missing Authorization vulnerability in Podlove Podcast Publisher.
Recommendations
For versions through 4.0.14, update to a version later than 4.0.14 to resolve the issue.
At the moment, there is no information about additional mitigation measures for this vulnerability.
Fix
Missing Authorization
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Podlove Podcast Publisher