4 matches found
CVE-2024-13897 Moving Media Library <= 1.22 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Deletion
The Moving Media Library plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the generatejsonpage function in all versions up to, and including, 1.22. This makes it possible for authenticated attackers, with Administrator-level access and abov...
CVE-2024-13897 Moving Media Library <= 1.22 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Deletion
The Moving Media Library plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the generatejsonpage function in all versions up to, and including, 1.22. This makes it possible for authenticated attackers, with Administrator-level access and abov...
WordPress Moving Media Library plugin <= 1.22 - Authenticated (Administrator+) Directory Traversal to Arbitrary File Deletion vulnerability
Authenticated Administrator+ Directory Traversal to Arbitrary File Deletion vulnerability discovered by omstaendlig in WordPress Plugin Moving Media Library versions = 1.22...
WordPress plugin Moving Media Library 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...