High severity7.2NVD Advisory· Published Jun 20, 2022· Updated Jun 17, 2026
CVE-2022-1939
CVE-2022-1939
Description
The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Allow svg files WordPress plugindescription
- Range: <1.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/4d7b62e1-558b-4504-a6e2-78246a8b554fnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.