PT-2025-21542 · WordPress · Avif Uploader
Name of the Vulnerable Software and Affected Versions: AVIF Uploader versions prior to 1.1.1 Description: The issue concerns the AVIF Uploader WordPress plugin, where uploaded SVG files are not properly sanitized. This could allow users with a role as low as Author to upload malicious SVG files...