WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Malicious SVG
CVE-2021-24960

5.4MEDIUM

Key Information:

Vendor: Wordpress
Status: WordPress File Upload; WordPress-file-upload-pro
Vendor: CVE Published:; 7 March 2022

Summary

The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 allows users with a role as low as Contributor to configure the upload form in a way that allows uploading of SVG files, which could be then be used for Cross-Site Scripting attacks

Affected Version(s)

WordPress File Upload 4.16.3

wordpress-file-upload-pro 4.16.3

References

https://wpscan.com/vulnerability/18902832-2973-498d-808e-...

x_refsource_MISC

https://plugins.trac.wordpress.org/changeset/2677722

x_refsource_CONFIRM

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Mar 7, 2022
Vulnerability Reserved
Jan 14, 2021

Credit

apple502j