EUVD-2026-19309

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in David Lingren Media LIbrary Assistant allows SQL Injection.This issue affects Media LIbrary Assistant: from n/a through 3.34...

CVE-2026-34885

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in David Lingren Media LIbrary Assistant allows SQL Injection.This issue affects Media LIbrary Assistant: from n/a through 3.34...

PT-2026-30631

Name of the Vulnerable Software and Affected Versions David Lingren Media Library Assistant versions through 3.34 Description A SQL Injection issue exists in David Lingren Media Library Assistant due to improper neutralization of special elements used in an SQL command. This allows attackers to...

EUVD-2025-201964

Authorization Bypass Through User-Controlled Key vulnerability in David Lingren Media Library Assistant media-library-assistant allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Media Library Assistant: from n/a through = 3.30...

EUVD-2023-38134

Malicious code in bioql PyPI...

EUVD-2023-28441

Malicious code in bioql PyPI...

CVE-2023-34010

Unauth. Reflected Cross-Site Scripting XSS vulnerability in submodule of David Lingren Media Library Assistant plugin = 3.0.7 versions...

CVE-2024-51661

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in David Lingren Media LIbrary Assistant media-library-assistant allows Command Injection.This issue affects Media LIbrary Assistant: from n/a through = 3.19...

Cross site scripting

Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...

CVE-2023-24385 WordPress Media Library Assistant Plugin <= 3.11 is vulnerable to Cross Site Scripting (XSS)

Auth. author+ Stored Cross-Site Scripting XSS vulnerability in David Lingren Media Library Assistant plugin = 3.11 versions...

CVE-2023-24385

CVE-2023-24385 affects the WordPress Med ia Library Assistant plugin (author+ stored XSS) up to version 3.11. Root cause: insufficient escaping/validation of input leading to stored XSS when an authenticated user with author role submits data. Impact: stored cross-site scripting potential; can af...

CVE-2023-34010

Unauth. Reflected Cross-Site Scripting XSS vulnerability in submodule of David Lingren Media Library Assistant plugin = 3.0.7 versions...

CVE-2023-34010

CVE-2023-34010 affects WordPress Media Library Assistant plugin (submodule) up to version 3.0.7. The vulnerability is an unauthenticated reflected Cross-Site Scripting (XSS) flaw in a submodule, enabling reflected XSS without authentication. Patch available: upgrade to version 3.0.8, which fixes ...

CVE-2023-34010 WordPress Media Library Assistant Plugin <= 3.0.7 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in submodule of David Lingren Media Library Assistant plugin = 3.0.7 versions...

PT-2023-24629 · WordPress · David Lingren Media Library Assistant

Name of the Vulnerable Software and Affected Versions: David Lingren Media Library Assistant plugin versions = 3.0.7 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability in a submodule of the David Lingren Media Library Assistant plugin. This...