4 matches found
CVE-2023-2143
creationtimestamp| type| source ---|---|--- 2024-09-25 04:16:40+00:00| seen| https://t.me/cvedetector/6249...
CVE-2023-2143
The CVE-2023-2143 entry concerns the WordPress plugin Enable SVG, WebP & ICO Upload (versions up to 1.0.3). Root cause: the plugin does not sanitize SVG contents, enabling Cross-Site Scripting. Impact is Cross-Site Scripting as described in multiple trusted sources. Exploitation details are not p...
CVE-2023-2143 Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS
The Enable SVG, WebP & ICO Upload WordPress plugin through 1.0.3 does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability...
WordPress Enable SVG, WebP & ICO Upload Plugin <= 1.0.6 is vulnerable to Cross Site Scripting (XSS)
Software Enable SVG, WebP & ICO Upload Type Plugin Vulnerable versions = 1.0.6 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-2143 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID c3213d756c76 Credits Mateus Macha...