CVE-2024-8378 | Safe SVG Plugin up to 2.2.5 on WordPress wp_handle_upload cross site scripting

Posted by Angelo Barbosa | Nov 7, 2024 | CVE

A vulnerability classified as problematic was found in Safe SVG Plugin up to 2.2.5 on WordPress. This vulnerability affects the function wp_handle_upload. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-8378. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8378 | Safe SVG Plugin up to 2.2.5 on WordPress wp_handle_upload cross site scripting

Related Posts

CVE-2024-8725 | Advanced File Manager Plugin up to 5.2.8 on WordPress unrestricted upload

CVE-2023-52721 | Huawei HarmonyOS/EMUI WindowManager Module access control

CVE-2024-7143 | Red Hat Ansible Automation Platform Role-Based Access Control add_roles_for_object_creator insecure inherited permissions

CVE-2024-50481 | Stack Themes Bstone Demo Importer Plugin up to 1.0.1 on WordPress privileges assignment