CVE-2023-6541 is a Cross-Site Scripting (XSS) vulnerability classified under CWE-79 found in the WordPress plugin 'Allow SVG' versions prior to 1.2.0. This plugin enables users to upload SVG files to WordPress sites. The vulnerability arises because the plugin does not properly sanitize SVG files upon upload, allowing malicious actors with at least Author-level privileges to upload SVG files containing embedded JavaScript or other XSS payloads. When such a malicious SVG is rendered in the context of the WordPress site, it can execute arbitrary scripts in the browser of users viewing the SVG, potentially leading to session hijacking, privilege escalation, or other malicious actions. The CVSS v3.1 base score is 6.1 (medium severity), reflecting that the attack vector is network-based, requires low attack complexity, no privileges required (PR:N) but user interaction is needed (UI:R), and the impact affects confidentiality and integrity with no impact on availability. The scope is changed (S:C), indicating that the vulnerability can affect components beyond the initially vulnerable component. No patches or known exploits in the wild are currently reported. The vulnerability is significant because SVG files are commonly used for scalable graphics on websites, and WordPress is a widely used CMS, making this a vector for attackers to exploit sites with relatively low privileges if the plugin is installed and outdated.

For European organizations, this vulnerability poses a risk primarily to websites running WordPress with the Allow SVG plugin installed and not updated to version 1.2.0 or later. Successful exploitation could lead to unauthorized script execution in the browsers of site visitors or administrators, potentially compromising user sessions, leaking sensitive information, or enabling further attacks such as privilege escalation or phishing. This could impact confidentiality and integrity of data handled by the affected websites. Organizations in sectors with strict data protection regulations, such as finance, healthcare, and government, could face compliance issues and reputational damage if exploited. Additionally, attackers could leverage this vulnerability to implant persistent malicious content or redirect users to malicious sites. Given the medium severity and requirement for user interaction, the threat is moderate but should not be underestimated, especially for high-profile or high-traffic sites.

1. Immediate update of the Allow SVG plugin to version 1.2.0 or later, where proper sanitization of SVG uploads is implemented. 2. Restrict SVG upload permissions to trusted roles only, preferably administrators, to reduce the risk of malicious uploads by lower-privileged users. 3. Implement Content Security Policy (CSP) headers to restrict execution of inline scripts and reduce the impact of XSS payloads. 4. Use additional server-side SVG sanitization tools or libraries to validate and clean SVG files before allowing upload. 5. Monitor and audit user uploads and website content for suspicious SVG files or unexpected script content. 6. Educate site administrators and content creators about the risks of uploading untrusted SVG files. 7. Regularly review and update WordPress plugins and core to minimize exposure to known vulnerabilities.