I bought ActionUser Addon from Eventon plugin to let users submit their own event, including event image so it would be uploaded to the frontend of my website. However:

When front-end users submit or edit events via ActionUser and click “Upload/Choose image,” the core WordPress media modal opens and displays existing media library items rather than restricting visibility to the user’s own uploads. This reveals site assets (e.g., brand logos and other media) to low-privilege users, which seems unintended for a front-end workflow.

Expected behavior
Either a native front-end image uploader (no WordPress media modal) with validation/limits, or

The media modal limited to the current user’s own uploads only, with an option to hide the library view and allow only new uploads.

Steps to reproduce
1. Create a front-end event submission page using ActionUser.
2. Log in with a low-privilege role (e.g., Subscriber/Contributor) allowed to upload.
3. Open the submission form and click the image field to upload/choose an image.
4. Observe that the WordPress media modal appears and shows existing media items.

What we tried:

1. Adjusted user capabilities to allow uploads for the role
2. Front-end styling and restrictions were tested, but the modal still exposes existing library items.
3. Considered embedding a third-party uploader shortcode, however that would require frontend users to 2x submit a form on one page? A native ActionUser solution should be the case here, right?

Request
Please confirm whether this front-end exposure of the full media library is expected behavior or a misconfiguration/bug. I have no interest in workarounds with user restriction settings on the WP media library etc. to be able to fix this.

If expected, is there a built-in setting, hook, or recommended method to:

Replace the modal with a native front-end-only image uploader?

If no current setting exists, is there a roadmap for a true front-end image upload experience that avoids the back-end media browser?

Security and privacy impact
Showing existing media to front-end users risks unintended disclosure of internal assets. The upload module is very ugly and does not represent the rest of the UI that Eventon natively has. A native, restricted, or upload-only front-end flow would align better with privacy and least-privilege principles.

Please elaborate.

Kind regards,
Mickey