← Back

Ideastocode

ideastocode

3 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Enable Svg, Webp & Ico Upload
enable_svg,_webp_&_ico_upload
3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-2143
1Ideastocode
1Enable Svg, Webp & Ico Upload
Jun 17, 2026
Jul 17, 2023
N/A· v4
5.4 MEDIUM· v3
N/A· v2
The Enable SVG, WebP & ICO Upload WordPress plugin through 1.0.3 does not sanitize SVG file contents, leading to a Cross-Site Scripting vulnerability.
CVE-2022-36343
1Ideastocode
1Enable Svg, Webp & Ico Upload
Jun 17, 2026
Aug 1, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress.
CVE-2022-34154
1Ideastocode
1Enable Svg, Webp & Ico Upload
Jun 17, 2026
Aug 1, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Authenticated (author or higher user role) Arbitrary File Upload vulnerability in ideasToCode Enable SVG, WebP & ICO Upload plugin <= 1.0.1 at WordPress.