Browse all 6 CVE security advisories affecting wp_media. AI-powered Chinese analysis, POCs, and references for each vulnerability.
wp_media is a WordPress plugin designed for media file management and optimization. Historically, it has been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. The plugin's handling of file uploads and insufficient input sanitization have frequently led to security incidents. With six CVEs recorded, wp_media has faced recurring problems related to improper access controls and insufficient validation of user-supplied data. Security researchers have identified multiple instances where unauthenticated attackers could exploit these vulnerabilities to compromise affected websites, highlighting the importance of regular updates and proper security hardening for this plugin.
This page lists every published CVE security advisory associated with wp_media. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.