RSS   Vulnerabilities for 'Allow svg files'   RSS

2022-06-20
 
CVE-2022-1939

CWE-434
 

 
The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to

 


Copyright 2022, cxsecurity.com

 

Back to Top