CVE-2024-8673
15.05.2025, 20:15
The Z-Downloads WordPress plugin before 1.11.7 does not properly validate uploaded files allowing for the uploading of SVGs containing malicious JavaScript.Enginsight
| Vendor | Product | Version |
|---|---|---|
| urbanbase | z-downloads | 𝑥 < 1.11.7 |
𝑥
= Vulnerable software versions