A Denial Of Service vulnerability exists in the safe-svg (aka Safe SVG) plugin up to and including 1.9.4 for WordPress, related to unlimited recursion for a '<use ... xlink:href="#identifier">' substring.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
10up safe svg |