Media Library Assistant Security Vulnerabilities and Issues — Media Library Assistant CVE List

Lucene search

DavidlingrenMedia Library Assistant

1 matches found

CVE•added 2025/07/16 10:15 a.m.•6 views

CVE-2025-7035

The Media Library Assistant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's mla_tag_cloud and mla_term_list shortcodes in all versions up to, and including, 3.26 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it ...

6.4CVSS5.6AI score0.00039EPSS