Unrated severityNVD Advisory· Published Aug 1, 2022· Updated Apr 28, 2026
WordPress Enable SVG, WebP & ICO Upload plugin <= 1.0.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
CVE-2022-36343
Description
Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.0.1
- ideasToCode/Enable SVG, WebP & ICO Upload (WordPress plugin)v5Range: <= 1.0.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.