A Denial Of Service vulnerability exists in the safe-svg (aka Safe SVG) plugin through 1.9.4 for WordPress, related to unlimited recursion for a '<use ... xlink:href="#identifier">' substring.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-11-11T14:36:02

Updated: 2024-08-05T02:02:39.620Z

Reserved: 2019-11-11T00:00:00

Link: CVE-2019-18854

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-11T15:15:12.313

Modified: 2024-11-21T04:33:43.130

Link: CVE-2019-18854

cve-icon Redhat

No data.