6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.4%
XOOPS Core 2.5.8 has stored XSS in imagemanager.php because of missing MIME type validation in htdocs/class/uploader.php.
www.securityfocus.com/bid/100094
github.com/XOOPS/XoopsCore25/issues/524