Vulnerabilities in benbodhi

4 results

CVE-2024-10222MEDIUMSVG Support <= 2.5.10 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File UploadEPSS 0.4%CVE-2022-4022MEDIUMThe SVG Support plugin for WordPress defaults to insecure settings in version 2.5 and 2.5.1. SVG files containing malicious javascript are nEPSS 0.4%CVE-2023-6708MEDIUMSVG Support <= 2.5.7 - Authenticated (Author+) Cross-Site Scripting via SVGEPSS 0.3%CVE-2026-48973MEDIUMWordPress SVG Support plugin <= 2.5.14 - Broken Access Control vulnerabilityEPSS 0.2%