Lucene search

K
wpvulndbBob MatyasWPVDB-ID:8F515E36-9072-4FC4-9D2F-D50F1ADDE626
HistoryJan 23, 2024 - 12:00 a.m.

Add SVG Support for Media Uploader | inventivo <= 1.0.5 - Author+ Stored XSS via SVG

2024-01-2300:00:00
Bob Matyas
wpscan.com
4
svg
media uploader
stored xss
author role

9.1 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

Description The plugin does not sanitize uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads.

PoC

Upload an SVG with the following code: Access the uploaded file directly to see the XSS.

9.1 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

Related for WPVDB-ID:8F515E36-9072-4FC4-9D2F-D50F1ADDE626