Description index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows stored XSS. Remediation References CVE-2020-8825 Related Vulnerabilities WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Unspecified Vulnerability (1.5.55) WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.10) Apache HTTP Server Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9517) Sqlite CVE-2015-5895 Vulnerability (CVE-2015-5895) Liferay DXP Deserialization of Untrusted Data Vulnerability (CVE-2020-15842) Severity Medium Classification CVE-2020-8825 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities