All 2 CVE vulnerabilities found in Enable SVG, WebP, and ICO Upload, with AI-generated Chinese analysis, references, and POCs.
Vendor: ideastocode
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-12457 | Enable SVG, WebP, and ICO Upload <= 1.1.2 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Uploads CWE-79 | 6.4 | Medium | 2025-11-18 |
| CVE-2025-13069 | Enable SVG, WebP, and ICO Upload <= 1.1.3 - Authenticated (Author+) Arbitrary File Upload via ICO Upload Bypass CWE-434 | 8.8 | High | 2025-11-18 |
All 2 known CVE vulnerabilities affecting Enable SVG, WebP, and ICO Upload with full Chinese analysis, references, and POCs where available.