CVE-2026-24548

Name: Websites susceptible to CVE-2026-24548
Creator: WebTechSurvey

CVE-2026-24548

WordPress Radio Player plugin <= 2.0.91 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in Prince Radio Player radio-player allows Server Side Request Forgery.This issue affects Radio Player: from n/a through <= 2.0.91.

We have discovered 1,175 live websites that are affected by CVE-2026-24548.

Run a Free Instant Scan

Affected Software


Product	Radio Player
Category	Wordpress Plugins
Vulnerable Domains	1,175 live websites (100% of Radio Player install base)
Vulnerable Versions	from 0 through 2.0.91
Vulnerable Versions Count	27 versions ( 100% of all versions)

Available Reports

Website List

Details

Published - Jan 23, 2026
Updated - Jan 26, 2026

Credits

Nabil Irawan | Patchstack Bug Bounty Program (finder)

CVE References

Website Distribution by Country

Number of websites using CVE-2026-24548

United States	323 websites

Germany	103 websites
France	63 websites
GB	63 websites
Brazil	61 websites
Italy	52 websites
Argentina	46 websites
Cyprus	41 websites
Chile	37 websites
Netherlands	35 websites

Website Distribution by TLD

Number of websites using CVE-2026-24548

.com	446 websites
.org	91 websites
.com.br	57 websites
.net	44 websites
.it	39 websites
.nl	33 websites
.co.uk	21 websites
.de	20 websites
.es	19 websites
.fr	14 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2026-24548

Top websites that are affected by CVE-2026-24548. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
*********.com	France	*,*
********.org	United States	*,*
*********.info	Russia	*,*
**********************.com	Canada	*,*
**********.org	United States	*,*
*.*.et	Ethiopia	*,*
****.org	United States	,,*
**********.nl	Netherlands	,,*
****.*.br	Brazil	,,*
**************.pt	Germany	,,*