CVE-2024-3111
- Reference to the description:
- Description:
- The Interactive Content WordPress plugin before 1.15.8 does not validate uploads which could allow a Contributors and above to update malicious SVG files, leading to Stored Cross-Site Scripting issues
- Last updated date:
- 08/01/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/28/2024
- Reference url to background
https://wpscan.com/vulnerability/7c39f3b5-d407-4eb0-aa34-b498fe196c55/