VYPR

Add SVG Support for Media Uploader

by WordPress

CVEs (1)

  • CVE-2023-7088MedMay 15, 2025
    risk 0.35cvss 5.4epss 0.00

    The Add SVG Support for Media Uploader | inventivo WordPress plugin through 1.0.5 does not sanitize uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads.