Description
Insufficient escaping of the LaTeX preamble made it possible for site administrators to read files available to the HTTP server system account.
Remediation
References
Related Vulnerabilities
WordPress Plugin GNUCommerce Cross-Site Scripting (1.4.1)
Plone CMS CVE-2012-5503 Vulnerability (CVE-2012-5503)
WordPress Plugin Nested Pages Cross-Site Scripting (1.6.5.2)
WordPress Plugin Nokia Maps & Places Cross-Site Scripting (1.6.6)
Squid Improper Input Validation Vulnerability (CVE-2019-12520)