Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in David Lingren Media Library Assistant allows Stored XSS. This issue affects Media Library Assistant: from n/a through 3.28.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Davidlingren |
|
| Wordpress |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
| Davidlingren |
|
| Wordpress |
|
References
History
Tue, 23 Sep 2025 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Davidlingren
Davidlingren media Library Assistant Wordpress Wordpress wordpress |
|
| Vendors & Products |
Davidlingren
Davidlingren media Library Assistant Wordpress Wordpress wordpress |
Mon, 22 Sep 2025 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in David Lingren Media Library Assistant allows Stored XSS. This issue affects Media Library Assistant: from n/a through 3.28. | |
| Title | WordPress Media Library Assistant Plugin <= 3.28 - Cross Site Scripting (XSS) Vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2025-09-23T17:51:10.734Z
Reserved: 2025-09-17T18:01:27.391Z
Link: CVE-2025-59590
Vulnrichment
No data.
NVD
Status : Awaiting Analysis
Published: 2025-09-22T19:16:27.590
Modified: 2025-09-22T21:22:16.313
Link: CVE-2025-59590
Redhat
No data.
OpenCVE Enrichment
Updated: 2025-09-23T16:05:30Z