CNNVD-202512-3149 Information
Dec 17, 2025
cve
CNNVD ID
CNNVD-202512-3149
Related CVE
- CNNVD Published: 2025-12-17
Description (Chinese)
Podcast Generator是PodcastGenerator开源的一套使用PHP语言编写的免费播客发布脚本。 Podcast Generator 3.2.9版本存在跨站脚本漏洞,该漏洞源于Freebox内容字段清理不当,可能导致存储型跨站脚本攻击。
Description (English)
Podcast Generator is a free podcast in PHP language from PodcastGenerator. There is a cross-site script loophole in version 3.2.9 of Podcast Generator, which stems from the inappropriate clean-up of Freebox content fields, which may lead to storage-type cross-site script attacks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
PodcastGenerator
Published
2025-12-17
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/podcastgenerator-stored-cross-site-scripting-via-freebox-content-field https://podcastgenerator.net/ https://www.exploit-db.com/exploits/51454 https://access.redhat.com/security/cve/cve-2023-53919
Share on: