SQL Injection Vulnerability in Media Library Assistant by David Lingren
CVE-2026-34885
8.5HIGH
What is CVE-2026-34885?
An SQL injection vulnerability in the Media Library Assistant plugin, developed by David Lingren, allows attackers to manipulate SQL queries by exploiting improper neutralization of special elements. This weakness can lead to unauthorized access to sensitive data, making it crucial for users to update to the latest version to mitigate potential risks. Affected versions include all prior to 3.34.
Affected Version(s)
Media LIbrary Assistant <= 3.34