3 matches found
CVE-2024-7858
creationtimestamp| type| source ---|---|--- 2024-08-30 13:08:37+00:00| seen| https://t.me/cvedetector/4512...
CVE-2024-7858 Media Library Folders <= 8.2.3 - Missing Authorization on Various Functions
The Media Library Folders plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several AJAX functions in the media-library-plus.php file in all versions up to, and including, 8.2.3. This makes it possible for authenticated attackers, with subscriber-level...
WordPress Media Library Folders Plugin <= 8.2.3 is vulnerable to Broken Access Control
Software Media Library Folders Type Plugin Vulnerable versions = 8.2.3 Fixed in 8.2.4 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-7858 Patch priority Medium CVSS severity Medium 6.3 Developer Claim ownership PSID e34ed26523d9 Credits Lucio Sá Required...