Audiomack Security & Risk Analysis
wordpress.org/plugins/audiomackAudiomack plugin allows you to add the audio player from Audiomack.com into your WordPress site using shortcodes.
Is Audiomack Safe to Use in 2026?
Use With Caution
Score 63/100Audiomack has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.
The Audiomack plugin v1.4.8 exhibits a concerning security posture, primarily due to a significant number of unprotected entry points and a history of medium-severity vulnerabilities. The static analysis reveals that 2 out of 3 total entry points, specifically AJAX handlers, lack authentication checks. This immediately exposes the plugin to potential unauthorized actions if these handlers are accessible. Furthermore, the plugin's handling of SQL queries is entirely un-prepared, and a substantial portion of its output (90%) is not properly escaped, increasing the risk of cross-site scripting (XSS) and SQL injection vulnerabilities. The presence of a known, unpatched medium-severity CVE related to XSS, dated in the future, is a critical red flag. While the plugin doesn't appear to have critical taint flows or dangerous functions, the combination of unprotected entry points, poor input/output sanitization practices, and a past vulnerability suggests a lack of robust security development. The plugin's only identified strength is the absence of external HTTP requests and file operations.
Key Concerns
- Unprotected AJAX handlers
- Raw SQL queries without prepared statements
- Low percentage of properly escaped output
- Unpatched medium severity CVE
- Missing nonce checks
- Missing capability checks
Audiomack Security Vulnerabilities
CVEs by Year
Severity Breakdown
1 total CVE
Audiomack <= 1.4.8 - Authenticated (Contributor+) Stored Cross-Site Scripting
Audiomack Code Analysis
Bundled Libraries
SQL Query Safety
Output Escaping
Audiomack Attack Surface
AJAX Handlers 2
Shortcodes 1
WordPress Hooks 6
Maintenance & Trust
Audiomack Maintenance & Trust
Maintenance Signals
Community Trust
Audiomack Alternatives
MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar
mp3-music-player-by-sonaar
The most advanced Audio Player for Music & Podcast. For Elementor, Gutenberg, WooCommerce and more. Add unlimited players to any pages!
Music Player for Elementor – Audio Player & Podcast Player
music-player-for-elementor
Audio Player for Elementor – the go-to plugin for adding MP3s, podcasts & playlists. Fully customizable, WooCommerce-ready, and mobile-friendly.
Cue by AudioTheme.com
cue
Delightful and reliable audio playlists.
Audio Album
audio-album
Displays a collection of audio tracks as an audio album using the native WordPress audio features. Includes a customizer section.
mb.miniAudioPlayer – an HTML5 audio player for your mp3 files
wp-miniaudioplayer
Transform your mp3 audio files into a nice, small light HTML5 player.
Audiomack Developer Profile
1 plugin · 100 total installs
How We Detect Audiomack
Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.
Asset Fingerprints
/wp-content/plugins/audiomack/tinymce/editor_plugin.js/wp-content/plugins/audiomack/tinymce/editor_plugin.min.js/wp-content/plugins/audiomack/css/audiomack.css/wp-content/plugins/audiomack/css/audiomack.min.css/wp-content/plugins/audiomack/js/audiomack.js/wp-content/plugins/audiomack/js/audiomack.min.jsplugins/audiomack/tinymce/editor_plugin.jsplugins/audiomack/tinymce/editor_plugin.min.jsplugins/audiomack/js/audiomack.jsplugins/audiomack/js/audiomack.min.jsaudiomack/css/audiomack.css?ver=audiomack/js/audiomack.js?ver=HTML / DOM Fingerprints
audiomack_player_container audiomack | Audiomack | http://www.audiomack.com/wordpress/ /audiomack | Audiomack | http://www.audiomack.com/wordpress/audiomack_ajax_render_popup_content<iframe src='https://audiomack.com/embed3/song/<iframe src='https://audiomack.com/embed3/playlist/<iframe src='https://audiomack.com/embed3/album/