The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2022-04-18T17:10:54

Updated: 2024-08-02T23:47:43.367Z

Reserved: 2022-03-25T00:00:00

Link: CVE-2022-1091

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-04-18T18:15:09.063

Modified: 2024-11-21T06:40:00.897

Link: CVE-2022-1091

cve-icon Redhat

No data.