Exposure of SVG Support
WordPress plugins12
exposure score
11,825
sites use
0
exploited
0
critical
CVEs
5 resultsCVE-2022-1755MEDIUMSVG Support < 2.5 - Author+ Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-10222MEDIUMSVG Support <= 2.5.10 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.4%CVE-2022-4022MEDIUMThe SVG Support plugin for WordPress defaults to insecure settings in version 2.5 and 2.5.1. SVG files containing malicious javascript are nEPSS 0.4%CVE-2023-6708MEDIUMSVG Support <= 2.5.7 - Authenticated (Author+) Cross-Site Scripting via SVGEPSS 0.3%CVE-2026-48973MEDIUMWordPress SVG Support plugin <= 2.5.14 - Broken Access Control vulnerabilityEPSS 0.2%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →