The Allow svg files WordPress plugin before 1.1 does not properly validate uploaded files, which could allow high privilege users such as admin to upload PHP files even when they are not allowed to
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/4d7b62e1-558b-4504-a6e2-78246a8b554f | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2022-06-20T10:26:20
Updated: 2022-06-20T10:26:20
Reserved: 2022-05-30T00:00:00
Link: CVE-2022-1939
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-20T11:15:10.543
Modified: 2022-06-28T18:30:00.583
Link: CVE-2022-1939
JSON object: View
Redhat Information
No data.
CWE