Maxfoundry Media Library Folders — known CVE vulnerabilities
Every CVE whose affected-product data names Maxfoundry Media Library Folders, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-30486 — CVSS 8.5 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Max Foundry Media Library…
CVE-2024-7857 — CVSS 6.5 (medium): The Media Library Folders plugin for WordPress is vulnerable to second order SQL Injection via the 'sort_type' parameter of the…
CVE-2024-31287 — CVSS 6.5 (medium): Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Max Foundry Media Library Folders.This…
CVE-2024-7858 — CVSS 6.3 (medium): The Media Library Folders plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several AJAX…
CVE-2024-3615 — CVSS 6.1 (medium): The Media Library Folders plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's' parameter in all versions up to…
CVE-2022-41634 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Media Library Folders plugin <= 7.1.1 on WordPress.
CVE-2025-0935 — CVSS 4.3 (medium): The Media Library Folders plugin for WordPress is vulnerable to unauthorized plugin settings change due to a missing capability check on…