CVE-2026-3072 | Media Library Assistant Plugin up to 3.33 on WordPress Attachment Taxonomy mla_update_compat_fields_action authorization

Inserito da Angelo Barbosa | Mar 4, 2026 | CVE

A vulnerability was found in Media Library Assistant Plugin up to 3.33 on WordPress and classified as problematic. This issue affects the function mla_update_compat_fields_action of the component Attachment Taxonomy Handler. Executing a manipulation can lead to missing authorization.

The identification of this vulnerability is CVE-2026-3072. The attack may be launched remotely. There is no exploit available.

CVE-2026-3072 | Media Library Assistant Plugin up to 3.33 on WordPress Attachment Taxonomy mla_update_compat_fields_action authorization

Post correlati

CVE-2023-23438 | Honor LGE-AN00 prior 6.0.0.188 unknown vulnerability

CVE-2024-36422 | FlowiseAI Flowise up to 1.4.3 404 Page api/v1/chatflows/id cross site scripting (GHSL-2023-232)

CVE-2024-11380 | Mini Program API Plugin up to 1.4.5 on WordPress cross site scripting

CVE-2024-32564 | Post Grid Team by WPXPO PostX Plugin up to 4.0.1 on WordPress cross site scripting