5 matches found
CVE-2023-0279
The Media Library Assistant WordPress plugin before 3.06 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...
CVE-2023-0279 Media Library Assistant < 3.06 - Admin+ SQLi
The Media Library Assistant WordPress plugin before 3.06 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...
CVE-2023-0279 Media Library Assistant < 3.06 - Admin+ SQLi
The Media Library Assistant WordPress plugin before 3.06 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...
CVE-2023-0279
CVE-2023-0279 affects the WordPress plugin Media Library Assistant (versions
WordPress Media Library Assistant Plugin < 3.06 is vulnerable to SQL Injection
Software Media Library Assistant Type Plugin Vulnerable versions 3.06 Fixed in 3.06 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0279 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID a816641d579e Credits Daniel Krohmer Fraunhofer IESE Kunal Sharma...