Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Media Library Assistant allows Command Injection.This issue affects Media Library Assistant: from n/a through 3.19.
History

Mon, 04 Nov 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Davidlingren
Davidlingren media Library Assistant
CPEs cpe:2.3:a:davidlingren:media_library_assistant:*:*:*:*:*:wordpress:*:*
Vendors & Products Davidlingren
Davidlingren media Library Assistant
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Mon, 04 Nov 2024 11:15:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in David Lingren Media Library Assistant allows Command Injection.This issue affects Media Library Assistant: from n/a through 3.19.
Title WordPress Media Library Assistant plugin <= 3.19 - Remote Code Execution (RCE) vulnerability
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 9.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-11-04T11:06:58.488Z

Updated: 2024-11-04T15:20:24.795Z

Reserved: 2024-10-30T15:05:26.590Z

Link: CVE-2024-51661

cve-icon Vulnrichment

Updated: 2024-11-04T15:20:18.658Z

cve-icon NVD

Status : Analyzed

Published: 2024-11-04T11:15:06.700

Modified: 2024-11-08T15:02:08.660

Link: CVE-2024-51661

cve-icon Redhat

No data.