5.2 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.8%
Perch Content Management System 3.0.3 allows unrestricted file upload (with resultant XSS) via the Asset Title field in conjunction with the Select File field. This is exploitable with a Limited Admin account.
www.vulnerability-lab.com/get_content.php?id=2067