Vulnerability Details CVE-2020-11928
In the media-library-assistant plugin before 2.82 for WordPress, Remote Code Execution can occur via the tax_query, meta_query, or date_query parameter in mla_gallery via an admin.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.075
EPSS Ranking 91.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-11928
-
cpe:2.3:a:davidlingren:media_library_assistant:-
-
cpe:2.3:a:davidlingren:media_library_assistant:0.1
-
cpe:2.3:a:davidlingren:media_library_assistant:0.11
-
cpe:2.3:a:davidlingren:media_library_assistant:0.90
-
cpe:2.3:a:davidlingren:media_library_assistant:1.00
-
cpe:2.3:a:davidlingren:media_library_assistant:1.95
-
cpe:2.3:a:davidlingren:media_library_assistant:2.00
-
cpe:2.3:a:davidlingren:media_library_assistant:2.25
-
cpe:2.3:a:davidlingren:media_library_assistant:2.30
-
cpe:2.3:a:davidlingren:media_library_assistant:2.33
-
cpe:2.3:a:davidlingren:media_library_assistant:2.40
-
cpe:2.3:a:davidlingren:media_library_assistant:2.41
-
cpe:2.3:a:davidlingren:media_library_assistant:2.50
-
cpe:2.3:a:davidlingren:media_library_assistant:2.54
-
cpe:2.3:a:davidlingren:media_library_assistant:2.60
-
cpe:2.3:a:davidlingren:media_library_assistant:2.65
-
cpe:2.3:a:davidlingren:media_library_assistant:2.70
-
cpe:2.3:a:davidlingren:media_library_assistant:2.74
-
cpe:2.3:a:davidlingren:media_library_assistant:2.78
-
cpe:2.3:a:davidlingren:media_library_assistant:2.79
-
cpe:2.3:a:davidlingren:media_library_assistant:2.80