Vulnerabilities and security researches forsvg-support svg-support

May 06, 2025

CVE, Research URL: CVE-2022-23638
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Feb 15, 2022
Research Description: svg-sanitizer is a SVG/XML sanitizer written in PHP. A cross-site scripting vulnerability impacts all users of the `svg-sanitizer` library prior to version 0.15.0. This issue is fixed in version 0.15.0. There is currently no workaround available.
Affected versions: Min -, max -.
Status: vulnerable

Feb 22, 2025

CVE, Research URL: CVE-2024-10222
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Feb 21, 2025
Research Description: The SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.5.10 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file. By default, this can only be exploited by administrators, but the ability to upload SVG files can be extended to authors.
Affected versions: Min -, max -.
Status: vulnerable

Jul 19, 2024

CVE, Research URL: CVE-2023-6708
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Jul 18, 2024
Research Description: The SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the SVG upload feature in all versions up to, and including, 2.5.5 due to insufficient input sanitization and output escaping, even when the 'Sanitize SVG while uploading' feature is enabled. This makes it possible for authenticated attackers, with author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Note that successful exploitation of this vulnerability requires the administrator to allow author-level users to upload SVG files.
Affected versions: Min -, max -.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: CVE-2022-4022
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Nov 16, 2022
Research Description: The SVG Support plugin for WordPress defaults to insecure settings in version 2.5 and 2.5.1. SVG files containing malicious javascript are not sanitized. While version 2.5 adds the ability to sanitize image as they are uploaded, the plugin defaults to disable sanitization and does not restrict SVG upload to only administrators. This allows authenticated attackers, with author-level privileges and higher, to upload malicious SVG files that can be embedded in posts and pages by higher privileged users. Additionally, the embedded JavaScript is also triggered on visiting the image URL, which allows an attacker to execute malicious code in browsers visiting that URL.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2021-24686
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Feb 01, 2022
Research Description: The SVG Support WordPress plugin before 2.3.20 does not escape the "CSS Class to target" setting before outputting it in an attribute, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2022-1755
Home page URL: Security reports for SVG Support
Application: SVG Support
Date: Sep 26, 2022
Research Description: The SVG Support WordPress plugin before 2.5 does not properly handle SVG added via an URL, which could allow users with a role as low as author to perform Cross-Site Scripting attacks
Affected versions: Min -, max -.
Status: vulnerable