CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

OSV•added 2020/04/20 12:15 a.m.•0 views

CVE-2020-11928

In the media-library-assistant plugin before 2.82 for WordPress, Remote Code Execution can occur via the taxquery, metaquery, or datequery parameter in mlagallery via an admin...

9.8CVSS5.9AI score

Exploits0References1

Prion•added 2020/04/20 12:15 a.m.•15 views

Remote code execution

In the media-library-assistant plugin before 2.82 for WordPress, Remote Code Execution can occur via the taxquery, metaquery, or datequery parameter in mlagallery via an admin...

7.5CVSS9.7AI score0.0755EPSS

Exploits0References1Affected Software1

WPVulnDB•added 2020/04/13 12:0 a.m.•20 views

Media Library Assistant < 2.82 - Unauthenticated Limited Local File Inclusion

The Media Library Assistant plugin before 2.82 for WordPress suffers from a Local File Inclusion vulnerability in mlagallery link=download. PoC The LFI is restricted to the "wp-content" directory...

5CVSS2.3AI score0.40963EPSS

Exploits4References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by