MEDIUM
Benbodhi
CVE published 2026-05-27
CVE-2026-48973
A Missing Authorization vulnerability in the SVG Support WordPress plugin allows authenticated users with low privileges to exploit incorrectly configured access control security levels. The vulnerability affects versions up to and including 2.5.14. The issue was disclosed on May 27, 2026, with NVD status currently marked as Deferred. The vulnerability is classified under CWE-862 (Missing Authorization) w [truncated]