CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Ideastocode 1Enable Svg, Webp & Ico Upload Jun 17, 2026 Jul 17, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The Enable SVG, WebP & ICO Upload WordPress plugin through 1.0.3 does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability. |
1Ideastocode 1Enable Svg, Webp & Ico Upload Jun 17, 2026 Aug 1, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. |
1Ideastocode 1Enable Svg, Webp & Ico Upload Jun 17, 2026 Aug 1, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Authenticated (author or higher user role) Arbitrary File Upload vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress. |