CVE
CVE-2025-0716
| CVE ID |
CVE-2025-0716
|
|---|---|
| CVSS Score |
4.8
|
| Operating System | |
| Affected Versions | |
| Patched Versions |
1.8.9
|
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
NVD Listing: NVD - CVE-2025-0716
Bug Fixes
- SVG image elements: This patch addresses a Content Spoofing vulnerability related to SVG image elements.
This patch addresses the CVE-2025-0716 vulnerability, where attackers could bypass common image source restrictions through improper sanitization of the href and xlink:href attributes in <image> SVG elements.