cleantalk
Vulnerabilities and Security Researches

Media Library Assistant, CVE-2020-11731

CVE, Research URL

CVE-2020-11731

Home page URL

Security reports for Media Library Assistant

Application

Media Library Assistant

Published on
Apr 13, 2020
Research Description
The Media Library Assistant plugin before 2.82 for Wordpress suffers from multiple XSS vulnerabilities in all Settings/Media Library Assistant tabs, which allow remote authenticated users to execute arbitrary JavaScript.
Affected versions
Min -, max 2.82.
Status
vulnerable
Previous vulnerability researches
Media Library Assistant (CVE-2024-6823) , Aug 13, 2024
Media Library Assistant (CVE-2024-5544) , Jul 03, 2024
Media Library Assistant (CVE-2025-31627) , Apr 02, 2025
Media Library Assistant (CVE-2024-11974) , Jan 05, 2025
Media Library Assistant (CVE-2020-11928) , Jun 07, 2024
New vulnerability
Product Filter by WBW (CVE-2025-2317) , Apr 05, 2025
Widget Manager Light (CVE-2025-31768) , Apr 05, 2025
Residential Address Detection (CVE-2025-30916) , Apr 05, 2025
SWM – Shopify to WooCommerce Migration (CVE-2025-31795) , Apr 05, 2025
include-file (CVE-2025-30596) , Apr 05, 2025