Description

Cross-Site Request Forgery (CSRF) vulnerability in Media Library Folders plugin <= 7.1.1 on WordPress.

Related CPE's

a

maxfoundry

media_library_folders

*

*

*

*

*

wordpress

Vulnerable

References

https://patchstack.com/database/vulnerability/media-library-plus/wordpress-media-library-folders-plugin-7-1-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Third Party Advisory

https://wordpress.org/plugins/media-library-plus/#developers

Release NotesThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-352

[email protected]

Secondary
CWE-352

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-11-18T23:15:25.707

2 years ago

Last modified

2022-11-23T18:05:58.250

2 years ago