← Back

Wp Svg Icons Project

wp_svg_icons_project

2 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Wp Svg Icons
wp_svg_icons
2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-0863
1Wp Svg Icons Project
1Wp Svg Icons
Jun 17, 2026
Jun 13, 2022
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
The WP SVG Icons WordPress plugin through 3.2.3 does not properly validate uploaded custom icon packs, allowing an high privileged user like an admin to upload a zip file containing malicious php code, leading to remote...Show more
The WP SVG Icons WordPress plugin through 3.2.3 does not properly validate uploaded custom icon packs, allowing an high privileged user like an admin to upload a zip file containing malicious php code, leading to remote code execution.Show less
CVE-2019-14216
1Wp Svg Icons Project
1Wp Svg Icons
Jun 17, 2026
Aug 14, 2019
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
An issue was discovered in the svg-vector-icon-plugin (aka WP SVG Icons) plugin through 3.2.1 for WordPress. wp-admin/admin.php?page=wp-svg-icons-custom-set mishandles Custom Icon uploads. CSRF leads to upload of a ZIP a...Show more
An issue was discovered in the svg-vector-icon-plugin (aka WP SVG Icons) plugin through 3.2.1 for WordPress. wp-admin/admin.php?page=wp-svg-icons-custom-set mishandles Custom Icon uploads. CSRF leads to upload of a ZIP archive containing a .php file.Show less