Vulnerabilities (CVE)

Filtered by vendor Convert-svg Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-24278 1 Convert-svg Project 1 Convert-svg 2024-11-21 7.5 HIGH 7.5 HIGH
The package convert-svg-core before 0.6.4 are vulnerable to Directory Traversal due to improper sanitization of SVG tags. Exploiting this vulnerability is possible by using a specially crafted SVG file.