CVE-2024-9227

Name of the Vulnerable Software and Affected Versions: PowerPress Podcasting plugin by Blubrry for WordPress versions prior to 11.9.18

Description: The issue concerns the PowerPress Podcasting plugin's failure to properly sanitize and escape certain settings when adding a podcast. This could enable admin users to perform Stored Cross-Site Scripting attacks, even in scenarios where the unfiltered html capability is not allowed.

Recommendations: For versions prior to 11.9.18, update to version 11.9.18 or later to resolve the issue.