Media Library Assistant is a WordPress plugin used to manage media files. It allows users to upload and manage images, videos, and audio files. The vulnerability in Media Library Assistant enables attackers to bypass access controls, potentially leading to unauthorized access to sensitive data.
You're affected if you use Authorization Bypass Through User-Controlled Key vulnerability. Affected versions: 3.30 If you don't recognise this software, you're probably not affected.
Upgrade to Media Library Assistant version 4.0.1 or later from the WordPress Plugin Directory (https://wordpress.org/plugins/media-library-assistant/) or through your hosting provider's plugin manager.
- If an immediate upgrade isn't possible, restrict network access to your WordPress installation and monitor for suspicious activity.