2 matches found
CVE-2023-0293
The Mediamatic – Media Library Folders plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on its AJAX actions in versions up to, and including, 2.8.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to chan...
CVE-2023-0293
The CVE-2023-0293 entry concerns the WordPress plugin Mediamatic – Media Library Folders . A missing capability check on the plugin’s AJAX actions in versions up to and including 2.8.1 enables an attacker authenticated as a subscriber or higher to bypass authorization and alter image categories u...