Description
The Image Import function in XWiki through 10.7 has XSS.
Remediation
References
Related Vulnerabilities
WordPress Plugin Migration, Backup, Staging-WPvivid Directory Traversal (0.9.75)
WordPress 2.3.3 Directory Traversal Vulnerability (0.6.2 - 2.3.3)
Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-8793)
Magento Improper Privilege Management Vulnerability (CVE-2020-9630)
WordPress Plugin Launcher:Coming Soon & Maintenance Mode Cross-Site Scripting (1.0.10)