Every CVE whose affected-product data names Kubiq Wp Svg Images, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-5945 — CVSS 6.4 (medium): The WP SVG Images plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘type’ parameter in all versions up to, and…
CVE-2021-24386 — CVSS 5.4 (medium): The WP SVG images WordPress plugin before 3.4 did not sanitise the SVG files uploaded, which could allow low privilege users such as…