CVE-2022-1091: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

April 19, 2022 (updated April 28, 2022)

The sanitisation step of the Safe SVG WordPress plugin before 1.9.10 can be bypassed by spoofing the content-type in the POST request to upload a file. Exploiting this vulnerability, an attacker will be able to perform the kinds of attacks that this plugin should prevent (mainly XSS, but depending on further use of uploaded SVG files potentially other XML attacks).

References

github.com/10up/safe-svg/pull/28
github.com/advisories/GHSA-5h7w-hmxc-99g5
nvd.nist.gov/vuln/detail/CVE-2022-1091
wpscan.com/vulnerability/4d12533e-bdb7-411f-bcdf-4c5046db13f3

Code Behaviors & Features

Detect and mitigate CVE-2022-1091 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →