Known Vulnerabilities for products from Davidlingren
Listed below are 16 of the newest known vulnerabilities associated with the vendor "Davidlingren".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-51661 json | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Med... | Not Provided | 2024-11-04 | 2026-04-23 |
| CVE-2024-5605 json | The Media Library Assistant plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter with... | Not Provided | 2024-06-20 | 2026-04-08 |
| CVE-2024-5544 json | The Media Library Assistant plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the order parameter in a... | Not Provided | 2024-07-02 | 2026-04-08 |
| CVE-2024-3519 json | The Media Library Assistant plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the lang parameter in al... | Not Provided | 2024-05-22 | 2026-04-08 |
| CVE-2024-3518 json | The Media Library Assistant plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode(s) in all versions... | Not Provided | 2024-05-22 | 2026-04-08 |
| CVE-2024-2871 json | The Media Library Assistant plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode(s) in all versions... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2024-2475 json | The Media Library Assistant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes in ... | Not Provided | 2024-03-29 | 2026-04-08 |
| CVE-2023-34010 json | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in submodule of David Lingren Media Library Assistant plugin <... | 6.1 - MEDIUM | 2023-08-05 | 2023-08-09 |
| CVE-2023-24385 json | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in David Lingren Media Library Assistant plugin <= 3.11 vers... | 4.8 - MEDIUM | 2023-10-17 | 2023-10-24 |
| CVE-2023-4716 json | The Media Library Assistant plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'mla_gallery' shortcode... | Not Provided | 2023-09-22 | 2026-04-08 |
| CVE-2023-4634 json | The Media Library Assistant plugin for WordPress is vulnerable to Local File Inclusion and Remote Code Execution in versions ... | Not Provided | 2023-09-06 | 2026-04-08 |
| CVE-2022-41618 json | Unauthenticated Error Log Disclosure vulnerability in Media Library Assistant plugin <= 3.00 on WordPress. | 5.3 - MEDIUM | 2022-11-18 | 2023-08-07 |
| CVE-2020-11928 json | In the media-library-assistant plugin before 2.82 for WordPress, Remote Code Execution can occur via the tax_query, meta_quer... | 9.8 - CRITICAL | 2020-04-20 | 2023-08-07 |
| CVE-2020-11732 json | The Media Library Assistant plugin before 2.82 for Wordpress suffers from a Local File Inclusion vulnerability in mla_gallery... | 7.5 - HIGH | 2020-04-13 | 2023-08-07 |
| CVE-2020-11731 json | The Media Library Assistant plugin before 2.82 for Wordpress suffers from multiple XSS vulnerabilities in all Settings/Media ... | 6.1 - MEDIUM | 2020-04-13 | 2023-08-07 |
| CVE-2018-20982 json | The media-library-assistant plugin before 2.74 for WordPress has XSS via the Media/Assistant or Settings/Media Library assist... | 6.1 - MEDIUM | 2019-08-22 | 2023-08-07 |