Filtered by vendor Wp Svg Upload Project Subscriptions
Filtered by product Wp Svg Upload Subscriptions

Search

Switch to Advanced Search (Beta)
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-11847 1 Wp Svg Upload Project 1 Wp Svg Upload 2025-06-25 4.8 Medium
The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to conduct Stored XSS attacks.