CVE-2024-7857

Name of the Vulnerable Software and Affected Versions Media Library Folders plugin for WordPress versions up to, and including, 8.2.2

Description The issue is related to a second order SQL Injection vulnerability via the sort type parameter of the mlf change sort type AJAX action. This vulnerability is caused by insufficient escaping on the user-supplied parameter and lack of sufficient preparation on the existing SQL query. As a result, authenticated attackers with subscriber-level access and above can append additional SQL queries into already existing queries to extract sensitive information from the database.

Recommendations For Media Library Folders plugin for WordPress versions up to, and including, 8.2.2: Update to a version later than 8.2.2 to resolve the issue. As a temporary workaround, consider restricting access to the mlf change sort type AJAX action to minimize the risk of exploitation. Avoid using the sort type parameter in the affected AJAX action until the issue is resolved. At the moment, there is no information about additional mitigation measures.