Vulnerabilities (CVE)

Filtered by vendor H5p Subscribe
Filtered by product H5p
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-3111 1 H5p 1 H5p 2024-11-21 N/A 5.4 MEDIUM
The Interactive Content WordPress plugin before 1.15.8 does not validate uploads which could allow a Contributors and above to update malicious SVG files, leading to Stored Cross-Site Scripting issues