Lucene search
Luan PedersiniPATCHSTACK:058CCFF16A7A1EEDB83135F5ACBA126DHistoryMay 30, 2022 - 12:00 a.m.
WordPress Allow svg files plugin <= 1.0 - Authenticated Arbitrary File Upload vulnerability
2022-05-3000:00:00
Luan Pedersini
patchstack.com
11
0.001 Low
EPSS
Percentile
43.0%
Authenticated Arbitrary File Upload vulnerability discovered by Luan Pedersini in WordPress Allow svg files plugin (versions <= 1.0).
Solution
Update the WordPress Allow svg files plugin to the latest available version (at least 1.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| allow svg files | le | 1.0 |
Related
cvelist
cvelist
CVE-2022-1939 Allow SVG Files < 1.1 - Admin+ Arbitrary File Upload
2022-06-20 10:26:20
nvd
nvd
CVE-2022-1939
2022-06-20 11:15:10
cve
cve
CVE-2022-1939
2022-06-20 11:15:10
cnvd
cnvd
WordPress Allow svg files plugin file upload vulnerability
2022-06-22 00:00:00
prion
prion
Design/Logic Flaw
2022-06-20 11:15:00