PT-2025-47734 · Craig Hewitt · Seriously Simple Podcasting
Published
2025-11-21
·
Updated
2025-12-04
·
CVE-2025-66059
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Seriously Simple Podcasting versions through 3.13.0
Description
A flaw exists in Craig Hewitt’s Seriously Simple Podcasting that allows the retrieval of embedded sensitive data. This issue potentially exposes sensitive system information to an unauthorized control sphere.
Recommendations
Update Seriously Simple Podcasting to a version later than 3.13.0.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Seriously Simple Podcasting