CVE-2013-7274
The CVE-2013-7274 entry documents a Cross-site scripting (XSS) vulnerability in Wallpaper Script 3.5.0082, where remote authenticated users can inject arbitrary script/HTML via the title field during a wallpaper file upload. This is caused by insufficient input sanitization in the upload workflow...