Media Library Assistant < 2.74 - Cross-Site Scripting (XSS)



Description
The media-library-assistant plugin before 2.74 for WordPress has XSS via the Media/Assistant or Settings/Media Library assistant admin submenu screens.

Affects Plugin

fixed in version 2.7.4

References

CVE 2018-20982

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Views 2416
Verified No
WPVDB ID 9590

Timeline

Publicly Published 2018-06-18 (almost 2 years ago)
Added 2019-08-22 (9 months ago)
Last Updated 2020-04-13 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin