CVE-2025-46519

Vulnerability

Overview The Media Library Downloader plugin for WordPress (versions up to and including 1.3.1) contains a missing authorization vulnerability. The plugin fails to properly verify user permissions before allowing access to certain functions, such as downloading media files. This is a classic broken access control issue where the software does not enforce the correct access restrictions [1].

Exploitation

Details An attacker can exploit this vulnerability by sending crafted HTTP requests to the affected plugin. The attack requires no special privileges beyond a low-level authenticated user account (e.g., subscriber) or possibly no authentication at all, depending on the specific missing check. The vulnerability is remotely exploitable over the network and does not require any user interaction [1].

Impact

Successful exploitation allows an attacker to download media files from the WordPress media library that should be restricted. This could lead to exposure of sensitive or private media content. The vulnerability has a CVSS v3 base score of 4.3 (Medium) and is noted to be used in mass-exploit campaigns targeting thousands of websites [1].

Mitigation

The vendor has released version 1.3.2 of the plugin, which addresses the missing authorization. Users are strongly advised to update to this version immediately. Patchstack users can enable auto-update for vulnerable plugins. No workaround is available [1].