Devowl Real Media Library — known CVE vulnerabilities
Every CVE whose affected-product data names Devowl Real Media Library, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-34668 — CVSS 6.4 (medium): The WordPress Real Media Library WordPress plugin is vulnerable to Stored Cross-Site Scripting via the name parameter in the…
CVE-2024-2027 — CVSS 6.4 (medium): The Real Media Library: Media Library Folder & File Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via its style…
CVE-2024-2328 — CVSS 6.4 (medium): The Real Media Library: Media Library Folder & File Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image…
CVE-2023-0285 — CVSS 5.4 (medium): The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with…