Cross Site Scripting(XSS)

bagisto/bagisto is vulnerable to Cross Site ScriptingXSS.The vulnerability is due to insufficient validation of user-uploaded PNG files in the ThemeCustomizationRepository.php file by using the product review option, allowing attackers to inject malicious scripts into the application, posing a ri...