Multiple cross-site scripting (XSS) vulnerabilities in the Media Library Categories plugin 1.1.1 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) bulk parameter to media-library-categories/add.php or (2) q parameter to media-library-categories/view.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rick mead media library categories 1.1.1 |