Количество 2
Количество 2
CVE-2024-11847
11 месяцев назад
The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to conduct Stored XSS attacks.
CVSS3: 4.8
EPSS: Низкий
GHSA-v2rr-fhv8-mx74
11 месяцев назад
wp-svg-upload WordPress plugin vulnerable to Stored Cross-site Scripting
CVSS3: 4.8
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-11847 The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to conduct Stored XSS attacks. | CVSS3: 4.8 | 0% Низкий | 11 месяцев назад |
| GHSA-v2rr-fhv8-mx74 wp-svg-upload WordPress plugin vulnerable to Stored Cross-site Scripting | CVSS3: 4.8 | 0% Низкий | 11 месяцев назад |
Уязвимостей на страницу
20