cleantalk
Vulnerabilities and Security Researches

Media Library Assistant, CVE-2026-54198

CVE, Research URL

CVE-2026-54198

Home page URL

Security reports for Media Library Assistant

Application

Media Library Assistant

Published on
Jun 16, 2026
Research Description
Unauthenticated Cross Site Scripting (XSS) in Media LIbrary Assistant <= 3.35 versions.
Affected versions
max 3.36.
Status
vulnerable
Previous vulnerability researches
Fonts Manager | Custom Fonts (CVE-2025-31578) , Apr 04, 2025
Fonts Manager | Custom Fonts (CVE-2026-1800) , Apr 13, 2026
Elegant Custom Fonts (CVE-2023-27436) , Jun 07, 2024
Custom Fonts &#8211; Host Your Fonts Locally , May 26, 2026
Custom Fonts &#8211; Host Your Fonts Locally (CVE-2024-1332) , Jun 07, 2024
New vulnerability
Video Conferencing with Zoom (CVE-2026-6964) , Jun 17, 2026
Media Library Assistant (CVE-2026-54198) , Jun 17, 2026
RomethemeKit For Elementor (CVE-2026-5149) , Jun 17, 2026
WooCommerce Digital Signature (CVE-2026-52694) , Jun 17, 2026
Permalink Manager Lite (CVE-2026-8494) , Jun 17, 2026