CVE-2024-12163 Information

Description

The goodlayers-core WordPress plugin before 2.1.3 allows users with a subscriber role and above to upload SVGs containing malicious payloads.

Reference

https://wpscan.com/vulnerability/ea704054-fb66-4014-89bd-1c61074f64e5/ https://wpscan.com/vulnerability/ea704054-fb66-4014-89bd-1c61074f64e5/