CVE-2024-4269
CVE-2024-4269 affects the WordPress plugin SVG Block, with versions prior to 1.1.20 not sanitizing SVG contents, enabling stored XSS via SVG uploads by users with author-level privileges. A fix is available in version 1.1.20 or later; multiple sources (NVD, Patchstack) confirm the stored XSS via ...