CVE-2025-12457 | Enable SVG, WebP, and ICO Upload Plugin up to 1.1.2 on WordPress SVG File cross site scripting

A vulnerability labeled as problematic has been found in Enable SVG, WebP, and ICO Upload Plugin up to 1.1.2 on WordPress. This vulnerability affects unknown code of the component SVG File Handler. Such manipulation leads to cross site scripting.

This vulnerability is referenced as CVE-2025-12457. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More