Authenticated Arbitrary File Upload Vulnerability in dmitrylitvinov Uploading SVG, WEBP, and ICO Files Plugin <= 1.0.1 for WordPress

Authenticated Arbitrary File Upload Vulnerability in dmitrylitvinov Uploading SVG, WEBP, and ICO Files Plugin <= 1.0.1 for WordPress

CVE-2022-36285 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Authenticated Arbitrary File Upload vulnerability in dmitrylitvinov Uploading SVG, WEBP and ICO files plugin <= 1.0.1 at WordPress.

Learn more about our Wordpress Pen Testing.