Kitfox: >> Svg Salamander Security Vulnerabilities
The SVG Salamander (aka svgSalamander) library, when used in a web application, allows remote attackers to conduct server-side request forgery (SSRF) attacks via an xlink:href attribute in an SVG file.
CVSS Score
7.4
EPSS Score
0.011
Published
2017-03-16