cleantalk
Vulnerabilities and Security Researches

Media Library Assistant, CVE-2026-54198

CVE, Research URL

CVE-2026-54198

Home page URL

Security reports for Media Library Assistant

Application

Media Library Assistant

Published on
Jun 16, 2026
Research Description
Unauthenticated Cross Site Scripting (XSS) in Media LIbrary Assistant <= 3.35 versions.
Affected versions
max 3.36.
Status
vulnerable
Previous vulnerability researches
Shipmondo &#8211; A complete shipping solution for WooCommerce (CVE-2025-27001) , Apr 02, 2025
New vulnerability
Conekta Payment Gateway (CVE-2026-49066) , Jun 18, 2026
Knit Pay &#8211; Instamojo, Razorpay, Cashfree, Stripe, Easebuzz, UPI QR, CCAvenue, GoUrl (CVE-2026-49070) , Jun 18, 2026
Premmerce Dev Tools (CVE-2026-6933) , Jun 17, 2026
Video Conferencing with Zoom (CVE-2026-6964) , Jun 17, 2026
Media Library Assistant (CVE-2026-54198) , Jun 17, 2026