Cheat sheets

CVE-2020-11928: WordPress plugin vulnerability

Share this with people that should know this:

In the media-library-assistant plugin before 2.82 for WordPress, Remote Code Execution can occur via the tax_query, meta_query, or date_query parameter in mla_gallery via an admin.

References

  • wordpress.org/plugins/media-library-assistant/#developers
  • Share this with people that should know this: