CVE-2019-18854

2019-11-11T15:15:00
ID CVE-2019-18854
Type cve
Reporter cve@mitre.org
Modified 2019-11-12T17:27:00

Description

A Denial Of Service vulnerability exists in the safe-svg (aka Safe SVG) plugin through 1.9.4 for WordPress, related to unlimited recursion for a '<use ... xlink:href="#identifier">' substring.