Cross-site scripting (XSS) vulnerability in the Blubrry PowerPress Podcasting plugin prior to 6.0.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the cat parameter in a powerpress-editcategoryfeed action in the powerpressadmin_categoryfeeds.php page to wp-admin/admin.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blubrry powerpress |