Skip to main content

Enable Svg Webp Ico Upload

3 CVEs product

Monthly

CVE-2023-2143 MEDIUM This Month

The Enable SVG, WebP & ICO Upload WordPress plugin through 1.0.3 does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Enable Svg Webp Ico Upload
NVD WPScan
CVSS 3.1
5.4
EPSS
0.3%
CVE-2022-36343 MEDIUM This Month

Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Enable Svg Webp Ico Upload
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2022-34154 HIGH This Week

Authenticated (author or higher user role) Arbitrary File Upload vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress File Upload Enable Svg Webp Ico Upload
NVD
CVSS 3.1
8.8
EPSS
1.0%
EPSS 0% CVSS 5.4
MEDIUM This Month

The Enable SVG, WebP & ICO Upload WordPress plugin through 1.0.3 does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress XSS Enable Svg Webp Ico Upload
NVD WPScan
EPSS 0% CVSS 5.4
MEDIUM This Month

Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS WordPress Enable Svg Webp Ico Upload
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Authenticated (author or higher user role) Arbitrary File Upload vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress File Upload Enable Svg Webp Ico Upload
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy