Allow Svg Files Project - Allow Svg Files CVE

Filtered by vendor Allow Svg Files Project Subscribe

Filtered by product Allow Svg Files

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-1939	1 Allow Svg Files Project	1 Allow Svg Files	2022-06-28	6.5 MEDIUM	7.2 HIGH
The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to

Vulnerabilities (CVE)