CVE-2025-32690

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting versions through 11.12.4

Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows DOM-Based XSS. This means that an attacker could potentially inject malicious scripts into the website, affecting the Document Object Model (DOM) of the web page.

Recommendations: For PowerPress Podcasting versions through 11.12.4, update to a version later than 11.12.4 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.