CVE-2022-1091

Safe SVG < 1.9.10 - SVG Sanitisation Bypass

EPSS 1.2%CWE-79

Vexday Risk Score

3Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS —EPSS 1.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

18 abr 2022Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).

Produtos afetados

Unknown · Safe SVG

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/10up/safe-svg/pull/28 https://wpscan.com/vulnerability/4d12533e-bdb7-411f-bcdf-4c5046db13f3