WordPress Plugin Vulnerabilities
Elementor < 3.0.14 - SVG Upload Allowed by Default
Description
The plugin allowed SVG files to be uploaded by default, which might lead to security issues, such as Cross-Site Scripting
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Verified
No
WPVDB ID
Timeline
Publicly Published
2021-01-06 (about 3 years ago)
Added
2021-01-06 (about 3 years ago)
Last Updated
2021-01-09 (about 3 years ago)