EPSS
Percentile
36.4%
inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture.
bugzilla.redhat.com/show_bug.cgi?id=1727705