WP Attachments

Vulnerabilities 5Slug wp-attachmentsLatest version 5.3.4WordPress.org →

Minimum safe version

5.2.1

Update to 5.2.1 or later to address 5 fixable vulnerabilities

Latest available5.3.4 ✓

N/A

2025-12-31< 5.2.1

CVE-2025-62888

Medium 6.1

2025-05-27< 5.1

WordPress WP Attachments Plugin <= 5.0.12 is vulnerable to Cross Site Scripting (XSS)

Medium 4.3

2023-10-16< 5.0.12

CVE-2023-45651

Medium 4.8

2023-01-16< 5.0.6

CVE-2022-4330

Medium 4.8

2023-10-18< 5.0.5

WordPress WP Attachments Plugin <= 5.0.4 is vulnerable to Cross Site Scripting (XSS)