Vulnerabilidades em dglingren
15 resultadosCVE-2023-4634CRITICALMedia Library Assistant <= 3.09 - Unauthenticated Local/Remote File Inclusion & Remote Code ExecutionEPSS 82.6%CVE-2024-6823HIGHMedia Library Assistant <= 3.18 - Authenticated (Author+) Arbitrary File Upload via mla-inline-edit-upload-scripts AJAX ActionEPSS 1.3%CVE-2024-5605HIGHMedia Library Assistant <= 3.16 - Authenticated (Contributor+) SQL Injection via order ParameterEPSS 0.6%CVE-2024-3518HIGHMedia Library Assistant <= 3.15 - Authenticated (Contributor+) SQL Injection via ShortcodeEPSS 0.5%CVE-2024-2871MEDIUMMedia Library Assistant <= 3.13 - Authenticated (Contributor+) SQL Injection via ShortcodeEPSS 0.5%CVE-2023-4716MEDIUMMedia Library Assistant <= 3.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.5%CVE-2024-2475MEDIUMMedia Library Assistant <= 3.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via mla_gallery ShortcodeEPSS 0.4%CVE-2025-11738MEDIUMMedia Library Assistant <= 3.29 - Unauthenticated Limited File ReadEPSS 0.4%CVE-2024-5544MEDIUMMedia Library Assistant <= 3.17 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2024-11974MEDIUMMedia Library Assistant <= 3.23 - Reflected Cross-Site Scripting via smc_settings_tab, unattachfixit-action, and woofixit-action ParametersEPSS 0.4%CVE-2024-3519MEDIUMMedia Library Assistant <= 3.15 - Reflected Cross-Site Scripting via langEPSS 0.3%CVE-2025-8357MEDIUMMedia Library Assistant <= 3.27 - Authenticated (Author+) Limited File DeletionEPSS 0.3%CVE-2025-7035MEDIUMMedia Library Assistant <= 3.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via mla_tag_cloud and mla_term_list ShortcodesEPSS 0.3%CVE-2026-6075HIGHMedia Library Assistant <= 3.35 - Cross-Site Request Forgery via Bulk Action FormEPSS 0.2%CVE-2026-3072MEDIUMMedia Library Assistant <= 3.33 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Taxonomy ModificationEPSS 0.2%