WordPress Enable SVG, WebP & ICO Upload plugin” (versions<= 1.0.1) authenticated stored-address cross-site scripting (XSS) vulnerability
2022年8月2日(Tue) 16:01
重大性スコア(CVS)
Details
Authenticated stored cross-site scripting (XSS) vulnerability due to malicious SVG file upload Enable SVG, WebP, and ICO upload plugins (version <= 1.0.1)
solution
No patched version available.
Sources.
CVE-2022-36343