The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2022-04-18T17:10:54
Updated: 2024-08-02T23:47:43.367Z
Reserved: 2022-03-25T00:00:00
Link: CVE-2022-1091
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-04-18T18:15:09.063
Modified: 2024-11-21T06:40:00.897
Link: CVE-2022-1091
Redhat
No data.