Cross-Site Request Forgery (CSRF) vulnerability in WordPress Media File Renamer β Auto & Manual Rename plugin (versions <= 5.1.9). Affected parameters "post_title", "filename", "lock". This allows changing the uploaded media title, media file name, and media locking state.
5.4CVSS
4.7AI Score
0.001EPSS
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Jordy Meow Media File Renamer: Rename Files (Manual, Auto & AI).This issue affects Media File Renamer: Rename Files (Manual, Auto & AI): from n/a through 5.6.9.
7.5CVSS
7.6AI Score
0.001EPSS