PT-2024-22417 · WordPress · Enhanced Media Library

Name of the Vulnerable Software and Affected Versions: Enhanced Media Library plugin for WordPress versions up to, and including, 2.8.9 Description: The issue allows authenticated attackers with author-level access and above to inject arbitrary web scripts in pages via media upload functionality...