5 matches found
CVE-2023-24385
Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...
CVE-2023-24385
Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...
CVE-2023-24385 WordPress Media Library Assistant Plugin <= 3.11 is vulnerable to Cross Site Scripting (XSS)
Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...
CVE-2023-24385
CVE-2023-24385 affects the WordPress Med ia Library Assistant plugin (author+ stored XSS) up to version 3.11. Root cause: insufficient escaping/validation of input leading to stored XSS when an authenticated user with author role submits data. Impact: stored cross-site scripting potential; can af...
WordPress Media Library Assistant Plugin <= 3.11 is vulnerable to Cross Site Scripting (XSS)
Software Media Library Assistant Type Plugin Vulnerable versions = 3.11 Fixed in 3.12 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-24385 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 5e6c468b6a3a Credits n0paew Required...