Browse all 5 CVE security advisories affecting libsyn. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Libsyn operates as a podcast hosting platform, providing media storage and distribution services. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, often stemming from input validation flaws and misconfigured access controls. While no major public security incidents have been widely reported, the platform maintains a moderate CVE count with five records to date. Security measures typically focus on protecting user content and preventing unauthorized access, though the distributed nature of podcast hosting presents inherent challenges in maintaining consistent security across all infrastructure components.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-32141 | WordPress Libsyn Publisher Hub plugin <= 1.4.4 - Cross Site Request Forgery (CSRF) vulnerability — Libsyn Publisher HubCWE-352 | 4.3 | Medium | 2024-04-15 |
| CVE-2024-32140 | WordPress Libsyn Publisher Hub plugin <= 1.4.4 - Cross Site Scripting (XSS) vulnerability — Libsyn Publisher HubCWE-79 | 6.5 | Medium | 2024-04-15 |
| CVE-2023-25057 | WordPress Libsyn Publisher Hub Plugin <= 1.3.2 is vulnerable to Sensitive Data Exposure — Libsyn Publisher HubCWE-200 | 5.3 | Medium | 2023-11-30 |
| CVE-2023-45834 | WordPress Libsyn Publisher Hub Plugin <= 1.4.4 is vulnerable to Sensitive Data Exposure — Libsyn Publisher HubCWE-200 | 5.3 | Medium | 2023-11-30 |
| CVE-2023-45835 | WordPress Libsyn Publisher Hub Plugin <= 1.4.4 is vulnerable to Cross Site Scripting (XSS) — Libsyn Publisher HubCWE-79 | 7.1 | High | 2023-10-24 |
This page lists every published CVE security advisory associated with libsyn. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.