0.002 Low
EPSS
Percentile
64.5%
A Denial Of Service vulnerability exists in the safe-svg (aka Safe SVG) plugin through 1.9.4 for WordPress, related to unlimited recursion for a ‘<use … xlink:href=“#identifier”>’ substring.
fortiguard.com/zeroday/FG-VD-19-113
plugins.trac.wordpress.org/changeset/2185438
wordpress.org/plugins/safe-svg/#developers
wpvulndb.com/vulnerabilities/9937