CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

3 matches found

RedhatCVE•added 2025/05/23 8:15 a.m.•3 views

CVE-2024-9060

The AVIF & SVG Uploader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in version 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary w...

6.4CVSS5.9AI score0.00084EPSS

Exploits0References1

Circl•added 2024/10/01 12:44 p.m.•1 views

CVE-2024-9060

creationtimestamp| type| source ---|---|--- 2024-10-01 12:44:43+00:00| seen| https://t.me/cvedetector/6740...

6.4CVSS4.8AI score0.00084EPSS

Exploits0References1

Vulnrichment•added 2024/10/01 9:30 a.m.•6 views

CVE-2024-9060 AVIF & SVG Uploader <= 1.1.0 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

The AVIF & SVG Uploader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in version 1.1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary w...

6.4CVSS5.9AI score0.00084EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by