Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpexploitAfeefWPEX-ID:E9B48B19-14CC-41AD-A029-F7F9AE236E4E
HistoryJun 14, 2021 - 12:00 a.m.

WP SVG Images < 3.4 - Authenticated (author+) Stored XSS via SVG

2021-06-1400:00:00
Afeef
378
wordpress
svg
authenticated
stored xss
exploit

EPSS

0.001

Percentile

24.8%

JSON

The plugin did not sanitise the SVG files uploaded, which could allow low privilege users such as author+ to upload a malicious SVG and then perform XSS attacks by inducing another user to access the file directly. In v3.4, the plugin restricted such upload to editors and admin, with an option to also allow author to do so. The description of the plugin has also been updated with a security warning as upload of such content is intended.

As an author, upload a malicious SVG and then access it directly (ie https://example.com/wp-content/uploads/2021/06/xss.svg) to trigger the XSS

Related

nvd 1
prion 1
cvelist 1
patchstack 1
wpvulndb 1
cve 1
nvd
nvd
CVE-2021-24386
2021-07-06 11:15:08
prion
prion
Design/Logic Flaw
2021-07-06 11:15:00
cvelist
cvelist
CVE-2021-24386 WP SVG Images < 3.4 - Authenticated (author+) Stored XSS via SVG
2021-07-06 11:03:28
patchstack
patchstack
WordPress WP SVG images plugin <= 3.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability via uploaded SVG file
2021-06-14 00:00:00
wpvulndb
wpvulndb
WP SVG Images < 3.4 - Authenticated (author+) Stored XSS via SVG
2021-06-14 00:00:00
cve
cve
CVE-2021-24386
2021-07-06 11:15:08

EPSS

0.001

Percentile

24.8%

JSON
Related for WPEX-ID:E9B48B19-14CC-41AD-A029-F7F9AE236E4E
nvd1prion1cvelist1patchstack1wpvulndb1cve1