CVE-2018-19919
Pixelimity 1.0 is affected by CVE-2018-19919: a persistent XSS flaw in the admin/portfolio.php data[title] parameter, demonstrated by a crafted onload attribute in an SVG element. This indicates that enabling arbitrary HTML/JS injection could occur through the title field when rendering the admin...