Description
The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 11.15.2. This is due to the plugin validating file extensions but not halting execution when validation fails in the 'powerpress_edit_post' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
Published: 2025-11-27
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Arbitrary File Upload
Action: Patch Immediately
AI Analysis

Impact

The Blubrry PowerPress Podcasting plugin for WordPress allows authenticated users with Contributor-level access to upload arbitrary files due to incomplete file type validation. The plugin checks file extensions but does not stop the upload when validation fails, letting an attacker place any file on the server. Depending on the uploaded file type, this can lead to remote code execution or other malicious actions on the site.

Affected Systems

The vulnerability affects all installations of the Blubrry PowerPress Podcasting plugin through version 11.15.2 inclusive. Administrators, authors, editors, or any user with a Contributor role or higher who can edit posts with the plugin present are at risk.

Risk and Exploitability

The CVSS base score of 8.8 indicates a high severity vulnerability, but the EPSS score of less than 1% suggests that exploitation probability is currently low. Although the vulnerability is not yet listed in CISA KEV, the possibility of remote code execution warrants immediate attention. Attackers would need valid Contributor credentials and access to the WordPress admin interface, after which they could upload a malicious file and execute it on the server.

Generated by OpenCVE AI on April 21, 2026 at 01:15 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade PowerPress to the latest release (11.15.3 or newer) which removes the unchecked file upload path.
  • If upgrading immediately is not feasible, block Contributor roles from uploading files or remove the powerpress_edit_post capability from those users.
  • Apply an additional layer of file‑type validation or a security plugin that restricts uploads to approved MIME types and extensions.

Generated by OpenCVE AI on April 21, 2026 at 01:15 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 28 Nov 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 27 Nov 2025 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Blubrry
Blubrry powerpress
Blubrry powerpress Podcasting
Wordpress
Wordpress wordpress
Vendors & Products Blubrry
Blubrry powerpress
Blubrry powerpress Podcasting
Wordpress
Wordpress wordpress

Thu, 27 Nov 2025 08:30:00 +0000

Type Values Removed Values Added
Description The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 11.15.2. This is due to the plugin validating file extensions but not halting execution when validation fails in the 'powerpress_edit_post' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
Title Blubrry PowerPress <= 11.15.2 - Authenticated (Contributor+) Arbitrary File Upload via 'powerpress_edit_post'
Weaknesses CWE-434
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Blubrry Powerpress Powerpress Podcasting
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:25:45.186Z

Reserved: 2025-11-21T23:56:20.385Z

Link: CVE-2025-13536

cve-icon Vulnrichment

Updated: 2025-11-28T16:02:38.394Z

cve-icon NVD

Status : Deferred

Published: 2025-11-27T09:15:45.687

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-13536

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T01:15:20Z

Weaknesses