Media Library Assistant

Medium 6.5

2026-04-06< 3.35

CVE-2026-34897

High 8.5

2026-03-13< 3.33

CVE-2026-32399

Medium 5.3

2025-12-09< 3.30

CVE-2025-63065

Medium 5.3

2025-10-18< 3.30

CVE-2025-11738

CVE EUVD Wordfence

Medium 4.3

2025-08-19< 3.28

Media Library Assistant <= 3.27 - Authenticated (Author+) Limited File Deletion

EUVD Wordfence CVE

Medium 6.4

2025-07-16< 3.27

Media Library Assistant <= 3.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via mla_tag_cloud and mla_term_list Shortcodes

EUVD Wordfence CVE

Medium 5.9

2025-03-31< 3.25

CVE-2025-31627

CVE Wordfence EUVD

Medium 6.1

2025-01-04< 3.24

CVE-2024-11974

Critical 9.1

2024-11-04< 3.20

CVE-2024-51661

High 8.8

2024-08-13< 3.19

CVE-2024-6823

Medium 6.1

2024-07-02< 3.18

CVE-2024-5544

CVE Wordfence Patchstack WPScan

High 8.8

2024-06-20< 3.17

CVE-2024-5605

CVE Wordfence Patchstack

Medium 6.5

2024-05-22< 3.16

WordPress Media Library Assistant Plugin <= 3.15 is vulnerable to SQL Injection

Patchstack CVE Wordfence

Medium 6.1

2024-05-22< 3.16

WordPress Media Library Assistant Plugin <= 3.15 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE Wordfence

Medium 5.4

2024-03-29< 3.14

CVE-2024-2475

High 7.7

2024-04-09< 3.14

CVE-2024-2871

CVE Wordfence Patchstack WPScan

Medium 5.9

2023-10-17< 3.12

CVE-2023-24385

Medium 5.4

2023-09-22< 3.11

CVE-2023-4716

Critical 9.8

2023-09-06< 3.10

CVE-2023-4634

Medium 5.8

2023-08-05< 3.0.8

CVE-2023-34010

N/A

< 2.90

Media Library Assistant < 2.90 - Authenticated Blind SQL Injection

WPScan

High 7.2

2023-02-27< 3.06

CVE-2023-0279

Low 3.7

2022-11-18< 3.01

CVE-2022-41618

N/A

2020-11-24< 2.9.0

WordPress Media Library Assistant plugin <= 2.84 - Authenticated Blind SQL Injection (SQLi) vulnerability

Patchstack

Medium 6.1

2019-08-22< 2.74

CVE-2018-20982

CVE Wordfence WPScan

High 7.5

2020-04-13< 2.82

CVE-2020-11732

Medium 6.1

2020-04-13< 2.82

CVE-2020-11731

Critical 9.8

2020-04-19< 2.82

CVE-2020-11928