0.001 Low
EPSS
Percentile
33.8%
ZendTo before 6.06-4 Beta allows XSS during the display of a drop-off in which a filename has unexpected characters.
zend.to/changelog.php