CVE-2024-9373
CVE-2024-9373 – Elemenda WordPress plugin is vulnerable to Stored Cross-Site Scripting via SVG file uploads in versions up to 0.0.2 due to insufficient input sanitization and output escaping.Authenticated users with Author-level access and above can inject scripts that execute when the SVG is vie...