CVE-2024-8378 | Safe SVG Plugin up to 2.2.5 on WordPress wp_handle_upload cross site scripting

Inserito da Angelo Barbosa | Nov 7, 2024 | CVE

A vulnerability classified as problematic was found in Safe SVG Plugin up to 2.2.5 on WordPress. This vulnerability affects the function wp_handle_upload. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-8378. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8378 | Safe SVG Plugin up to 2.2.5 on WordPress wp_handle_upload cross site scripting

Post correlati

CVE-2024-40117 | Solar-Log 1000 prior 2.8.2 Web Administration Server access control

CVE-2024-3460 | KioWare up to 8.34 on Windows improper protection of alternate path

CVE-2023-49242 | Huawei HarmonyOS/EMUI Broadcast access control

CVE-2023-22527 | Atlassian Confluence Data Center/Confluence Server prior 8.5.4 Template injection