CVE-2024-8673
EUVD-2025-1522915.05.2025, 20:15
The Z-Downloads WordPress plugin before 1.11.7 does not properly validate uploaded files allowing for the uploading of SVGs containing malicious JavaScript.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| urbanbase | z-downloads | 𝑥 < 1.11.7 |
𝑥
= Vulnerable software versions