CVE-2022-1091
Last modified
CVE-2022-1091 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).. EPSS estimates a 1.16% chance of exploitation in the next 30 days.
Description
The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| 10up | Safe Svg | < 1.9.10 |
References
- https://github.com/10up/safe-svg/pull/28Patch, Third Party Advisory
- https://wpscan.com/vulnerability/4d12533e-bdb7-411f-bcdf-4c5046db13f3Exploit, Third Party Advisory
- https://github.com/10up/safe-svg/pull/28Patch, Third Party Advisory
- https://wpscan.com/vulnerability/4d12533e-bdb7-411f-bcdf-4c5046db13f3Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-1091?
How severe is CVE-2022-1091?
How do I fix CVE-2022-1091?
Are you affected by CVE-2022-1091?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST