The Elemenda plugin for WordPress has a security issue where unauthorized users can upload SVG files that contain malicious code. This can allow them to add harmful scripts to web pages that are accessed by other users. This vulnerability affects all versions up to 0.0.2 and can only be exploited by users with Author-level access or higher.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
